CVE-2026-9119 - Vulnerability Details

- chromium-browser: Heap buffer overflow in WebRTC

Description

Heap buffer overflow in WebRTC in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

Published: 2026-05-20

Score: 8.8 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

A heap buffer overflow in the WebRTC component of Google Chrome allows a remote attacker to execute arbitrary code inside the browser sandbox by loading a specially crafted HTML page. The flaw is a classic buffer overflow, identified by CWE‑120 and CWE‑122, that permits execution of arbitrary code within the browser sandbox.

Affected Systems

Google Chrome users running any build prior to version 148.0.7778.179 are affected. The vulnerability is specific to the Chrome browser itself and does not directly impact the underlying operating system or other applications.

Risk and Exploitability

The vulnerability carries a high Chromium security severity rating and a CVSS score of 8.8; EPSS score of < 1% indicates a very low likelihood of exploitation. It is not listed in the CISA KEV catalog. Exploitation requires an attacker to persuade a user to visit a malicious webpage or otherwise deliver a crafted page to the browser; the overflow occurs during normal processing of that page. Because the arbitrary code execution occurs within the sandbox, the risk of immediate system compromise is mitigated unless a separate sandbox escape is achieved. Nonetheless, the threat remains significant for users who download or view untrusted content.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Google

Chrome

affected

Version	Status	Constraints
`148.0.7778.179`	affected	< 148.0.7778.179

Configuration 1 [-]

AND

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

OR	cpe:2.3:o:apple:macos:-:::::::*
	cpe:2.3:o:linux:linux_kernel:-:::::::*
	cpe:2.3:o:microsoft:windows:-:::::::*

No data.

Vendor Product Confidence Versions

Google

Chrome

100%

Version	Status	Scheme	Platform
`[0,148.0.7778.179)`	affected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade Google Chrome to version 148.0.7778.179 or newer
Disable the WebRTC feature in Chrome by setting the "WebRTC" flag to "Disabled" via chrome://flags or by using a browser extension that blocks the feature
Ensure that Chrome automatic updates are enabled and keep the operating system and security software updated to reduce exposure to related vulnerabilities

Generated by OpenCVE AI on May 29, 2026 at 05:07 UTC.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
Debian DSA	DSA-6287-1	chromium security update

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00022.

Exploitation none

Automatable no

Technical Impact total

References

Link	Providers
https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0841193308.html
https://issues.chromium.org/issues/502661101
https://nvd.nist.gov/vuln/detail/CVE-2026-9119
https://www.cve.org/CVERecord?id=CVE-2026-9119

History

Fri, 29 May 2026 00:15:00 +0000

Type	Values Removed	Values Added
Title	WebRTC Heap Buffer Overflow Enables Remote Code Execution	chromium-browser: Heap buffer overflow in WebRTC
Weaknesses		CWE-120
References		https://nvd.nist.gov/vuln/detail/CVE-2026-9119 https://www.cve.org/CVERecord?id=CVE-2026-9119
Metrics	threat_severity `None`	threat_severity `Important`

Thu, 21 May 2026 16:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Apple Apple macos Linux Linux linux Kernel Microsoft Microsoft windows
CPEs		cpe:2.3:a:google:chrome:::::::: cpe:2.3:o:apple:macos:-:::::::* cpe:2.3:o:linux:linux_kernel:-:::::::* cpe:2.3:o:microsoft:windows:-:::::::*
Vendors & Products		Apple Apple macos Linux Linux linux Kernel Microsoft Microsoft windows

Wed, 20 May 2026 21:30:00 +0000

Type	Values Removed	Values Added
Title		WebRTC Heap Buffer Overflow Enables Remote Code Execution

Wed, 20 May 2026 20:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Google Google chrome
Vendors & Products		Google Google chrome

Wed, 20 May 2026 20:15:00 +0000

Type	Values Removed	Values Added
Metrics		cvssV3_1 `{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Wed, 20 May 2026 19:30:00 +0000

Type	Values Removed	Values Added
Description		Heap buffer overflow in WebRTC in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
Weaknesses		CWE-122
References		https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0841193308.html https://issues.chromium.org/issues/502661101

Subscriptions

Apple Macos

Google Chrome

Linux Linux Kernel

Microsoft Windows

MITRE

Status: PUBLISHED

Assigner: Chrome

Published: 2026-05-20T19:12:45.223Z

Updated: 2026-05-21T03:55:48.661Z

Reserved: 2026-05-20T17:39:23.683Z

Link: CVE-2026-9119

Vulnrichment

Updated: 2026-05-20T19:36:16.035Z

NVD

Status : Analyzed

Published: 2026-05-20T20:16:43.387

Modified: 2026-05-21T16:44:34.153

Link: CVE-2026-9119

Redhat

Severity : Important

Publid Date: 2026-05-19T00:00:00Z

Links: CVE-2026-9119 - Bugzilla

OpenCVE Enrichment

Updated: 2026-05-29T05:15:16Z

Weaknesses

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

Exploitation none

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object