Description
Inappropriate implementation in Tint in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
Published: 2026-04-28
Score: 8.8 High
EPSS: n/a
KEV: No
Impact: Remote Code Execution
Action: Patch Now
AI Analysis

Impact

Chrome’s Tint rendering engine contains an inappropriate bounds check that enables a remote attacker to trigger an out‑of‑bounds memory access via a specially crafted HTML page. This flaw can overwrite or read arbitrary memory, potentially allowing an attacker to execute arbitrary code on the client’s machine. The vulnerability has been graded as a high‑severity issue by Chromium security teams.

Affected Systems

The flaw exists in Google Chrome versions released prior to 147.0.7727.138 on all supported operating systems. Users running Chrome 147.0.7727.137 or earlier are affected, regardless of platform.

Risk and Exploitability

The vulnerability is exploitable from a web page, making it a classic drive‑by attack vector. No EPSS score is available, but the high‑severity rating and lack of mitigation mean a motivated attacker could likely succeed against any user who opens the crafted page. The vulnerability is not currently listed in CISA’s KEV catalog, but its potential for remote code execution warrants immediate attention.

Generated by OpenCVE AI on April 29, 2026 at 01:04 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Google Chrome to version 147.0.7727.138 or later
  • Restart any instances of Chrome after the update to ensure the vulnerable component is unloaded
  • Disable or limit JavaScript execution in untrusted web content until a patch is applied

Generated by OpenCVE AI on April 29, 2026 at 01:04 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 29 Apr 2026 12:15:00 +0000

Type Values Removed Values Added
Title Out‑of‑Bounds Memory Access in Chrome Tint Rendering Engine chromium-browser: Inappropriate implementation in Tint
Weaknesses CWE-131
References
Metrics threat_severity

None

 cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}

threat_severity

Important

Wed, 29 Apr 2026 01:30:00 +0000

Type Values Removed Values Added
Title Out‑of‑Bounds Memory Access in Chrome Tint Rendering Engine
Weaknesses CWE-122

Wed, 29 Apr 2026 00:45:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Tue, 28 Apr 2026 23:00:00 +0000

Type Values Removed Values Added
Description Inappropriate implementation in Tint in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
References

Subscriptions

Google Chrome
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-04-28T22:36:05.971Z

Reserved: 2026-04-28T20:02:40.077Z

Link: CVE-2026-7346

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-04-28T23:16:22.190

Modified: 2026-04-28T23:16:22.190

Link: CVE-2026-7346

cve-icon Redhat

Severity : Important

Publid Date: 2026-04-28T00:00:00Z

Links: CVE-2026-7346 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-04-29T01:15:44Z

Weaknesses