Description
Out of bounds read in GPU in Google Chrome on Mac prior to 148.0.7778.179 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)
Published: 2026-05-20
Score: 4.3 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

An out‑of‑bounds image processing bug exists in the GPU subsystem of Google Chrome for macOS. The flaw allows a remotely served, crafted HTML page to cause the GPU to read memory beyond its intended bounds, potentially exposing sensitive data stored in the browser process. The vulnerability is a classic buffer bounds checking weakness, classified as CWE‑125, and its official severity is noted as high.

Affected Systems

Google Chrome running on macOS versions prior to 148.0.7778.179 are affected. The attack affects all users on the Chrome stable channel before the specified patch version.

Risk and Exploitability

The CVSS score of 4.3 indicates a moderate risk level, and no EPSS score is available to indicate current exploitation probability. The vulnerability is not registered in CISA’s KEV catalog, showing no public widespread exploitation as of the data available. Attackers must be able to serve the malicious web page over the network to the target user; the vector is thus network‑based via the browser, requiring the victim to render the crafted page.

Generated by OpenCVE AI on May 20, 2026 at 21:53 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Chrome to version 148.0.7778.179 or later
  • Disable GPU acceleration in Chrome’s settings to eliminate the vulnerable code path
  • Avoid opening untrusted web pages or files that could trigger GPU rendering until a patch is applied

Generated by OpenCVE AI on May 20, 2026 at 21:53 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 20 May 2026 21:30:00 +0000

Type Values Removed Values Added
Title Out-of-Bounds GPU Memory Read in Chrome on macOS

Wed, 20 May 2026 20:45:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Wed, 20 May 2026 20:15:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 4.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 20 May 2026 19:30:00 +0000

Type Values Removed Values Added
Description Out of bounds read in GPU in Google Chrome on Mac prior to 148.0.7778.179 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)
Weaknesses CWE-125
References

Subscriptions

Google Chrome
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-05-20T19:42:20.419Z

Reserved: 2026-05-20T17:39:21.044Z

Link: CVE-2026-9113

cve-icon Vulnrichment

Updated: 2026-05-20T19:42:17.679Z

cve-icon NVD

Status : Received

Published: 2026-05-20T20:16:42.227

Modified: 2026-05-20T20:16:42.227

Link: CVE-2026-9113

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-20T22:00:08Z

Weaknesses