Description
Out of bounds read in Codecs in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to obtain potentially sensitive information from process memory via a malicious file. (Chromium security severity: Medium)
Published: 2026-05-06
Score: 8.1 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A malicious file can trigger a Chrome codec routine that performs an out-of-bounds read, allowing an attacker to exfiltrate data from the browser process memory. The weakness is a memory safety violation (CWE-125) that can leak potentially sensitive information such as passwords, cookies, or other user data. The vulnerability is classified as a medium severity issue by Chromium's internal scoring.

Affected Systems

Google Chrome on desktop platforms. All releases prior to 148.0.7778.96 are affected; the earliest patched version is 148.0.7778.96 released in the stable channel.

Risk and Exploitability

The CVSS score is 8.1, indicating a high severity issue, but the vulnerability provides a remote data leak path that requires the victim to open a malicious file. Since the exploit is read-only and does not execute code, the attack surface is limited to information disclosure, yet it remains impactful for credential theft or privacy violations. The EPSS score is less than 1%, indicating a very low but non-zero exploitation probability, and the vulnerability is not listed in CISA's KEV catalog.

Generated by OpenCVE AI on May 7, 2026 at 15:53 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Chrome to version 148.0.7778.96 or later via the official update mechanism
  • Avoid opening unknown or suspicious files that were not generated by trusted sources
  • Employ a policy or extension that blocks or warns before opening potentially dangerous media files

Generated by OpenCVE AI on May 7, 2026 at 15:53 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DSA Debian DSA DSA-6250-1 chromium security update
History

Sat, 09 May 2026 00:15:00 +0000

Type Values Removed Values Added
Title chromium-browser: Out of bounds read in Codecs
References
Metrics threat_severity

None

 threat_severity

Moderate

Thu, 07 May 2026 16:15:00 +0000

Type Values Removed Values Added
Title Out-of-Bounds Read in Chrome Codecs Enables Data Leak from Malicious File

Thu, 07 May 2026 13:15:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

 cvssV3_1

{'score': 8.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 06 May 2026 23:30:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
Linux
Linux linux Kernel
Microsoft
Microsoft windows
CPEs cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
Vendors & Products Apple
Apple macos
Linux
Linux linux Kernel
Microsoft
Microsoft windows

Wed, 06 May 2026 21:30:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Wed, 06 May 2026 21:15:00 +0000

Type Values Removed Values Added
Title Out-of-Bounds Read in Chrome Codecs Enables Data Leak from Malicious File

Wed, 06 May 2026 19:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 06 May 2026 18:30:00 +0000

Type Values Removed Values Added
Description Out of bounds read in Codecs in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to obtain potentially sensitive information from process memory via a malicious file. (Chromium security severity: Medium)
Weaknesses CWE-125
References

Subscriptions

Apple Macos
Google Chrome
Linux Linux Kernel
Microsoft Windows
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-05-07T12:58:23.258Z

Reserved: 2026-05-05T22:59:26.616Z

Link: CVE-2026-7981

cve-icon Vulnrichment

Updated: 2026-05-06T19:07:44.577Z

cve-icon NVD

Status : Analyzed

Published: 2026-05-06T19:16:48.963

Modified: 2026-05-07T14:38:45.550

Link: CVE-2026-7981

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-05-05T00:00:00Z

Links: CVE-2026-7981 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-07T16:00:12Z

Weaknesses