Description
Type Confusion in Turbofan in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
Published: 2026-04-15
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: Remote Code Execution inside the Chrome sandbox
Action: Immediate Patch
AI Analysis

Impact

A type confusion flaw in the Turbofan JIT compiler of Google Chrome, present before version 147.0.7727.101, lets an attacker run arbitrary code within the browser’s sandbox. The bug, classified as CWE‑843, was surfaced with the Chromium high‑severity flag. The flaw allows code execution without needing prior compromise of the operating system, leveraging only an attacker‑controlled HTML page.

Affected Systems

Any installation of Google Chrome older than 147.0.7727.101 is susceptible. The affected product is the Chrome browser for desktop operating systems. Users whose browsers have not yet been updated to 147.0.7727.101 or newer are at risk.

Risk and Exploitability

The vulnerability is remotely exploitable by serving a crafted HTML page, so the attack surface extends to any user who visits a malicious site. The EPSS score is not provided and the flaw is not listed in CISA’s KEV catalog, indicating no confirmed widespread exploitation yet. Nevertheless, the application of a High rating by Chromium and the fact that the flaw allows arbitrary code execution inside the sandbox warrant a high‑assurance response. Attackers would need no additional foothold beyond the browser, making effective exploitation likely if a user opens a malicious page. Its CVSS score is 8.8, indicating a high severity level.

Generated by OpenCVE AI on April 15, 2026 at 22:04 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Chrome to version 147.0.7727.101 or later, which contains the fix for the Turbofan type confusion bug
  • If an immediate update is not possible, launch Chrome using the --disable-extensions flag and disable JavaScript in sites that are untrusted to reduce the chance that the vulnerable code is executed
  • Avoid visiting or rendering untrusted content in browsers running the vulnerable Chrome versions until an update is applied

Generated by OpenCVE AI on April 15, 2026 at 22:04 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DSA Debian DSA DSA-6214-1 chromium security update
History

Fri, 17 Apr 2026 15:45:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
Linux
Linux linux Kernel
Microsoft
Microsoft windows
CPEs cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
Vendors & Products Apple
Apple macos
Linux
Linux linux Kernel
Microsoft
Microsoft windows

Thu, 16 Apr 2026 00:15:00 +0000

Type Values Removed Values Added
Title chromium-browser: Type Confusion in Turbofan
References
Metrics threat_severity

None

 threat_severity

Important

Wed, 15 Apr 2026 22:00:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Wed, 15 Apr 2026 20:15:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 15 Apr 2026 19:30:00 +0000

Type Values Removed Values Added
Description Type Confusion in Turbofan in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
Weaknesses CWE-843
References

Subscriptions

Apple Macos
Google Chrome
Linux Linux Kernel
Microsoft Windows
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-04-16T03:55:57.939Z

Reserved: 2026-04-14T18:12:21.241Z

Link: CVE-2026-6301

cve-icon Vulnrichment

Updated: 2026-04-15T19:51:13.485Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-15T20:16:39.153

Modified: 2026-04-17T15:41:01.207

Link: CVE-2026-6301

cve-icon Redhat

Severity : Important

Publid Date: 2026-04-15T00:00:00Z

Links: CVE-2026-6301 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-04-15T22:15:15Z

Weaknesses