Description
Type Confusion in Chrome Tabs in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
Published: 2026-06-30
Score: n/a
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A type confusion vulnerability in Chrome Tabs allows a remote attacker who has already compromised the renderer process to specify a crafted HTML page that may lead to a sandbox escape. The flaw enables the attacker to break out of the renderer process’s security boundaries, potentially acquiring higher privileges on the affected system. The Chromium security severity is noted as High due to the elevated privilege level that can be achieved.

Affected Systems

All desktop installations of Google Chrome prior to version 150.0.7871.47 are vulnerable. The issue is present regardless of operating system or platform. Users of earlier Chrome releases on Windows, macOS, or Linux are at risk if they run unpatched versions.

Risk and Exploitability

The EPSS score is not available and the vulnerability is not listed in the CISA KEV catalog, but the defined severity by Chromium is High. Exploitation requires the attacker to have already gained control of the renderer process, a condition that can arise from malicious web content or compromised host processes. While the attack vector is not fully remote in the traditional sense, a third‑party web page could be used to bootstrap the renderer process compromise, making the vulnerability a significant risk for systems that allow untrusted content to load arbitrarily. The lack of an EPSS score indicates limited publicly known exploitation, yet the high severity and potential for privilege escalation warrant prompt attention.

Generated by OpenCVE AI on July 1, 2026 at 04:30 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Google Chrome to version 150.0.7871.47 or later to contain the patch for the type confusion flaw.
  • If an update cannot be performed immediately, enforce strict renderer process isolation and disable privileged extensions or web components that could be used to supply crafted HTML to the affected tabs.
  • Use enterprise policy or security tools to block installation of Chrome versions older than 150.0.7871.47 and to ensure that all systems automatically receive the latest stable channel updates.

Generated by OpenCVE AI on July 1, 2026 at 04:30 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 01 Jul 2026 01:15:00 +0000

Type Values Removed Values Added
Title Type Confusion in Chrome Tabs Allowing Sandbox Escape

Tue, 30 Jun 2026 23:15:00 +0000

Type Values Removed Values Added
Description Type Confusion in Chrome Tabs in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
Weaknesses CWE-843
References

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-06-30T22:37:38.843Z

Reserved: 2026-06-29T23:03:21.606Z

Link: CVE-2026-13803

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-07-01T01:00:14Z

Weaknesses
  • CWE-843

    Access of Resource Using Incompatible Type ('Type Confusion')