CVE-2026-8570 - Vulnerability Details

- chromium-browser: chromium-browser: Type Confusion in V8

Description

Type Confusion in V8 in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)

Published: 2026-05-14

Score: 6.5 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The vulnerability is a type confusion in the V8 JavaScript engine in Google Chrome before version 148.0.7778.168. A malicious website can deliver a crafted HTML page that causes the engine to read arbitrary process memory, enabling an attacker to gather potentially sensitive data such as cookies, authentication tokens, or other in‑memory secrets. The flaw is not a code execution flaw but allows data leakage from the browser process. The likely attack vector is a web page served over HTTP or HTTPS that a user visits; it is inferred from the need for a crafted HTML page to trigger the misuse of V8’s type system.

Affected Systems

Affected products are Google Chrome running on desktop platforms; any installation of Chrome with a version older than 148.0.7778.168 is vulnerable. The issue was fixed in the stable channel update released in May 2026.

Risk and Exploitability

The CVSS score of 6.5 classifies the flaw as medium severity, and the EPSS score remains unavailable. The vulnerability is not listed in the CISA KEV catalog, indicating no known widespread exploitation. However, because the flaw can be triggered by a simple crafted HTML page, the attack is remote via the browser, and any user visiting a malicious site with the attack payload can receive sensitive data. The fix is in the latest Chrome release, so updating mitigates the problem.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Google

Chrome

affected

Version	Status	Constraints
`148.0.7778.168`	affected	< 148.0.7778.168

Configuration 1 [-]

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

No data.

Vendor Product Confidence Versions

Google

Chrome

100%

Version	Status	Scheme	Platform
`[148.0.7778.168,148.0.7778.168)`	affected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade Google Chrome to version 148.0.7778.168 or newer, using the built‑in update mechanism or manually installing the latest package.
Enforce a policy that ensures all managed browsers run the newest version, using group policy or similar management tools.
Until the update is applied, avoid visiting untrusted sites, and employ a reputable site‑reputation or safe browsing extension to block malicious content.

Generated by OpenCVE AI on May 14, 2026 at 23:37 UTC.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
Debian DSA	DSA-6273-1	chromium security update

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.0003.

Exploitation none

Automatable no

Technical Impact partial

References

Link	Providers
https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_12.html
https://issues.chromium.org/issues/490353576
https://nvd.nist.gov/vuln/detail/CVE-2026-8570
https://www.cve.org/CVERecord?id=CVE-2026-8570

History

Tue, 19 May 2026 15:30:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:2.3:a:google:chrome::::::::

Fri, 15 May 2026 12:15:00 +0000

Type	Values Removed	Values Added
Title		chromium-browser: chromium-browser: Type Confusion in V8
References		https://nvd.nist.gov/vuln/detail/CVE-2026-8570 https://www.cve.org/CVERecord?id=CVE-2026-8570
Metrics	threat_severity `None`	threat_severity `Moderate`

Fri, 15 May 2026 00:00:00 +0000

Type	Values Removed	Values Added
Title	V8 Type Confusion Enables Remote Information Disclosure in Google Chrome

Thu, 14 May 2026 22:45:00 +0000

Type	Values Removed	Values Added
Title		V8 Type Confusion Enables Remote Information Disclosure in Google Chrome

Thu, 14 May 2026 22:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Google Google chrome
Vendors & Products		Google Google chrome
Metrics		cvssV3_1 `{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Thu, 14 May 2026 20:15:00 +0000

Type	Values Removed	Values Added
Description		Type Confusion in V8 in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)
Weaknesses		CWE-843
References		https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_12.html https://issues.chromium.org/issues/490353576

Subscriptions

Google Chrome

MITRE

Status: PUBLISHED

Assigner: Chrome

Published: 2026-05-14T19:52:33.145Z

Updated: 2026-05-14T21:23:37.726Z

Reserved: 2026-05-14T05:40:24.526Z

Link: CVE-2026-8570

Vulnrichment

Updated: 2026-05-14T21:23:34.756Z

NVD

Status : Analyzed

Published: 2026-05-14T20:17:19.260

Modified: 2026-05-19T15:18:15.843

Link: CVE-2026-8570

Redhat

Severity : Moderate

Publid Date: 2026-05-14T19:52:33Z

Links: CVE-2026-8570 - Bugzilla

OpenCVE Enrichment

Updated: 2026-05-14T23:45:31Z

Weaknesses

CWE-843

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction Required

Exploitation none

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object