Description
Out of bounds read in Fonts in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)
Published: 2026-05-06
Score: 4.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is an out‑of‑bounds read (CWE‑125) within the Fonts component of Google Chrome. A malicious HTML page can prompt the browser to read memory beyond the intended buffer, potentially revealing sensitive data such as secrets, credentials, or other confidential information. This flaw does not allow code execution or modification of system state, but it can compromise confidentiality in compromised environments.

Affected Systems

Google Chrome versions prior to 148.0.7778.96 are affected. The disclosed update increases the minimum stable channel version to 148.0.7778.96, which mitigates the flaw.

Risk and Exploitability

The CVSS score of 4.3 indicates moderate severity, with no EPSS data available, indicating that the exploitation probability is not quantified. Because the flaw is triggered by a crafted web page viewed in the browser, an attacker would need to deliver and have the victim open the page, suggesting a typical web‑based attack vector. The lack of EPSS data means the exact likelihood of exploitation remains undetermined, but the moderate severity warrants attention.

Generated by OpenCVE AI on May 7, 2026 at 01:10 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Google Chrome to version 148.0.7778.96 or later via the stable channel update.
  • If a Chrome upgrade cannot be applied immediately, switch to a non‑affected browser, such as Mozilla Firefox or Microsoft Edge, to reduce exposure.
  • Apply an enterprise update policy that forces automatic Chrome upgrades on all endpoints to ensure the vulnerability is patched without manual intervention.

Generated by OpenCVE AI on May 7, 2026 at 01:10 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DSA Debian DSA DSA-6250-1 chromium security update
History

Thu, 07 May 2026 01:30:00 +0000

Type Values Removed Values Added
Title Out-of-bounds Memory Read in Chrome Fonts via Crafted HTML

Wed, 06 May 2026 23:45:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
Linux
Linux linux Kernel
Microsoft
Microsoft windows
CPEs cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
Vendors & Products Apple
Apple macos
Linux
Linux linux Kernel
Microsoft
Microsoft windows

Wed, 06 May 2026 22:15:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 4.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 06 May 2026 21:00:00 +0000

Type Values Removed Values Added
Title Out-of-bounds Memory Read in Chrome Fonts via Crafted HTML

Wed, 06 May 2026 20:15:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Wed, 06 May 2026 18:30:00 +0000

Type Values Removed Values Added
Description Out of bounds read in Fonts in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)
Weaknesses CWE-125
References

Subscriptions

Apple Macos
Google Chrome
Linux Linux Kernel
Microsoft Windows
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-05-06T22:03:52.536Z

Reserved: 2026-05-05T22:59:05.344Z

Link: CVE-2026-7904

cve-icon Vulnrichment

Updated: 2026-05-06T20:31:45.134Z

cve-icon NVD

Status : Analyzed

Published: 2026-05-06T19:16:38.697

Modified: 2026-05-06T23:42:14.127

Link: CVE-2026-7904

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-07T01:15:17Z

Weaknesses