Description
Insufficient validation of untrusted input in Skia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
Published: 2026-06-30
Score: n/a
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

This vulnerability arises from insufficient validation of untrusted input in Skia, the graphics library used by Google Chrome. A crafted HTML page can trigger a sandbox escape if the attacker already compromises the renderer process, allowing code execution beyond the browser sandbox. The critical nature of the flaw means that an attacker who can get a renderer process compromised can potentially take control of the client system.

Affected Systems

All users of Google Chrome versions prior to 150.0.7871.47 are potentially affected. The flaw is limited to the browser’s rendering component and does not affect native operating‑system components directly.

Risk and Exploitability

The flaw is rated critical by Chromium, but its EPSS score is not available and it is not listed in the CISA KEV catalog. The attack vector requires the attacker to control the renderer process, which typically implies a successful phishing or drive‑by exploit. Once achieved, the sandbox escape can lead to full system compromise. The lack of a public exploit suggests that the attack requires sophisticated attack infrastructure.

Generated by OpenCVE AI on July 1, 2026 at 00:26 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Google Chrome to version 150.0.7871.47 or later, which contains the patch for the Skia input validation failure.
  • If immediate upgrade is unfeasible, consider disabling or restricting the renderer sandbox via Chrome policies or command‑line flags to reduce the likelihood of successful escape.
  • Monitor system logs for anomalous renderer process activity and implement web‑filtering or intrusion‑prevention controls to block malicious HTML content that could be used for exploitation.

Generated by OpenCVE AI on July 1, 2026 at 00:26 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 01 Jul 2026 00:45:00 +0000

Type Values Removed Values Added
Title Skia Input Validation Leading to Sandbox Escape in Google Chrome

Tue, 30 Jun 2026 23:15:00 +0000

Type Values Removed Values Added
Description Insufficient validation of untrusted input in Skia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
Weaknesses CWE-20
References

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-06-30T22:37:30.422Z

Reserved: 2026-06-29T23:03:16.083Z

Link: CVE-2026-13781

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-07-01T00:30:06Z

Weaknesses
  • CWE-20

    Improper Input Validation