CVE-2026-7981 - Vulnerability Details

- Out-of-Bounds Read in Chrome Codecs Enables Data Leak from Malicious File

Description

Out of bounds read in Codecs in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to obtain potentially sensitive information from process memory via a malicious file. (Chromium security severity: Medium)

Published: 2026-05-06

Score: 8.1 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

A malicious file can trigger a Chrome codec routine that performs an out-of-bounds read, allowing an attacker to exfiltrate data from the browser process memory. The weakness is a memory safety violation (CWE-125) that can leak potentially sensitive information such as passwords, cookies, or other user data. The vulnerability is classified as a medium severity issue by Chromium's internal scoring.

Affected Systems

Google Chrome on desktop platforms. All releases prior to 148.0.7778.96 are affected; the earliest patched version is 148.0.7778.96 released in the stable channel.

Risk and Exploitability

The CVSS score is 6.5, indicating a medium severity issue, but the vulnerability provides a remote data leak path that requires the victim to open a malicious file. Since the exploit is read-only and does not execute code, the attack surface is limited to information disclosure, yet it remains impactful for credential theft or privacy violations. EPSS is not available and the vulnerability is not listed in CISA's KEV catalog.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Google

Chrome

affected

Version	Status	Constraints
`148.0.7778.96`	affected	< 148.0.7778.96

Configuration 1 [-]

AND

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

OR	cpe:2.3:o:apple:macos:-:::::::*
	cpe:2.3:o:linux:linux_kernel:-:::::::*
	cpe:2.3:o:microsoft:windows:-:::::::*

No data.

Vendor Product Confidence Versions

Google

Chrome

100%

Version	Status	Scheme	Platform
`148.0.7778.96`	affected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Update Chrome to version 148.0.7778.96 or later via the official update mechanism
Avoid opening unknown or suspicious files that were not generated by trusted sources
Employ a policy or extension that blocks or warns before opening potentially dangerous media files

Generated by OpenCVE AI on May 6, 2026 at 20:51 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00026.

Exploitation none

Automatable no

Technical Impact total

References

Link	Providers
https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop.html
https://issues.chromium.org/issues/497926602

History

Thu, 07 May 2026 13:15:00 +0000

Type	Values Removed	Values Added
Metrics	cvssV3_1 `{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`	cvssV3_1 `{'score': 8.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Wed, 06 May 2026 23:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Apple Apple macos Linux Linux linux Kernel Microsoft Microsoft windows
CPEs		cpe:2.3:a:google:chrome:::::::: cpe:2.3:o:apple:macos:-:::::::* cpe:2.3:o:linux:linux_kernel:-:::::::* cpe:2.3:o:microsoft:windows:-:::::::*
Vendors & Products		Apple Apple macos Linux Linux linux Kernel Microsoft Microsoft windows

Wed, 06 May 2026 21:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Google Google chrome
Vendors & Products		Google Google chrome

Wed, 06 May 2026 21:15:00 +0000

Type	Values Removed	Values Added
Title		Out-of-Bounds Read in Chrome Codecs Enables Data Leak from Malicious File

Wed, 06 May 2026 19:30:00 +0000

Type	Values Removed	Values Added
Metrics		cvssV3_1 `{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 06 May 2026 18:30:00 +0000

Type	Values Removed	Values Added
Description		Out of bounds read in Codecs in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to obtain potentially sensitive information from process memory via a malicious file. (Chromium security severity: Medium)
Weaknesses		CWE-125
References		https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop.html https://issues.chromium.org/issues/497926602

Subscriptions

Apple Macos

Google Chrome

Linux Linux Kernel

Microsoft Windows

MITRE

Status: PUBLISHED

Assigner: Chrome

Published: 2026-05-06T18:13:00.591Z

Updated: 2026-05-07T12:58:23.258Z

Reserved: 2026-05-05T22:59:26.616Z

Link: CVE-2026-7981

Vulnrichment

Updated: 2026-05-06T19:07:44.577Z

NVD

Status : Analyzed

Published: 2026-05-06T19:16:48.963

Modified: 2026-05-07T14:38:45.550

Link: CVE-2026-7981

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-05-06T21:15:13Z

Weaknesses

CWE-125

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction Required

Exploitation none

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object