CVE-2026-5902 - Vulnerability Details

- chromium-browser: Race in Media

Description

Race in Media in Google Chrome on Android prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to corrupt media stream metadata via a crafted HTML page. (Chromium security severity: Low)

Published: 2026-04-08

Score: 9.8 Critical

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

A race condition in Google Chrome’s media handling allows a renderer process that has already been compromised to overwrite media stream metadata using a crafted HTML page. The corrupted metadata can misrepresent media playback or force the browser to process incorrect data, potentially leading to information disclosure or denial of service. The flaw is classified as a race condition (CWE‑362) and an atomicity violation (CWE‑368).

Affected Systems

Google Chrome on Android versions before 147.0.7727.55 is affected. No other browsers or operating systems listed in the CPEs are confirmed to be vulnerable based on the current advisory.

Risk and Exploitability

The CVSS base score of 9.8 signals a high severity, but the EPSS is less than 1 % indicating low current exploitation activity. The vulnerability is not listed in the CISA KEV catalog. Exploitation would require delivering a malicious HTML page to a user whose renderer process is already compromised, implying a sophisticated local or remote attack. The race condition itself may be hard to trigger reliably, but if achieved it can alter media metadata with significant impact on user experience and data integrity.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Google

Chrome

affected

Version	Status	Constraints
`147.0.7727.55`	affected	< 147.0.7727.55

Configuration 1 [-]

AND

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

OR	cpe:2.3:o:apple:macos:-:::::::*
	cpe:2.3:o:linux:linux_kernel:-:::::::*
	cpe:2.3:o:microsoft:windows:-:::::::*

No data.

Vendor Product Confidence Versions

Google

Chrome

100%

Version	Status	Scheme	Platform
`147.0.7727.55`	affected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade Google Chrome to version 147.0.7727.55 or higher
Enable automatic updates to receive security patches promptly
Verify that the updated Chrome version is installed on all target devices

Generated by OpenCVE AI on April 13, 2026 at 23:07 UTC.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
Debian DSA	DSA-6205-1	chromium security update

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00096.

Exploitation none

Automatable yes

Technical Impact total

References

Link	Providers
https://chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop.html
https://issues.chromium.org/issues/483109205
https://nvd.nist.gov/vuln/detail/CVE-2026-5902
https://www.cve.org/CVERecord?id=CVE-2026-5902

History

Mon, 13 Apr 2026 21:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Apple Apple macos Linux Linux linux Kernel Microsoft Microsoft windows
CPEs		cpe:2.3:a:google:chrome:::::::: cpe:2.3:o:apple:macos:-:::::::* cpe:2.3:o:linux:linux_kernel:-:::::::* cpe:2.3:o:microsoft:windows:-:::::::*
Vendors & Products		Apple Apple macos Linux Linux linux Kernel Microsoft Microsoft windows

Mon, 13 Apr 2026 19:15:00 +0000

Type	Values Removed	Values Added
Metrics	cvssV3_1 `{'score': 3.7, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L'}`	ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}` cvssV3_1 `{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}`

Fri, 10 Apr 2026 12:15:00 +0000

Type	Values Removed	Values Added
Title	Race Condition in Chrome Media Rendering Enables Metadata Corruption	chromium-browser: Race in Media
Weaknesses		CWE-368
References		https://nvd.nist.gov/vuln/detail/CVE-2026-5902 https://www.cve.org/CVERecord?id=CVE-2026-5902
Metrics	threat_severity `None`	cvssV3_1 `{'score': 3.7, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L'}` threat_severity `Low`

Thu, 09 Apr 2026 08:30:00 +0000

Type	Values Removed	Values Added
Title		Race Condition in Chrome Media Rendering Enables Metadata Corruption
First Time appeared		Google Google chrome
Vendors & Products		Google Google chrome

Wed, 08 Apr 2026 21:30:00 +0000

Type	Values Removed	Values Added
Description		Race in Media in Google Chrome on Android prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to corrupt media stream metadata via a crafted HTML page. (Chromium security severity: Low)
Weaknesses		CWE-362
References		https://chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop.html https://issues.chromium.org/issues/483109205

Subscriptions

Apple Macos

Google Chrome

Linux Linux Kernel

Microsoft Windows

MITRE

Status: PUBLISHED

Assigner: Chrome

Published: 2026-04-08T21:21:00.103Z

Updated: 2026-04-13T18:17:18.216Z

Reserved: 2026-04-08T19:34:43.375Z

Link: CVE-2026-5902

Vulnrichment

Updated: 2026-04-13T18:12:33.911Z

NVD

Status : Analyzed

Published: 2026-04-08T22:16:30.080

Modified: 2026-04-13T21:14:13.800

Link: CVE-2026-5902

Redhat

Severity : Low

Publid Date: 2026-04-07T00:00:00Z

Links: CVE-2026-5902 - Bugzilla

OpenCVE Enrichment

Updated: 2026-04-14T16:37:27Z

Weaknesses

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable yes

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object