Description
Use after free in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
Published: 2026-05-28
Score: 8.3 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

This flaw is a use‑after‑free bug in the ANGLE graphics library of Google Chrome, classified as CWE‑416. If a remote attacker manages to compromise the renderer process, the flaw can enable a sandbox escape, potentially allowing code execution with higher privileges than the renderer. The vulnerability is specifically tied to a crafted HTML page that targets the renderer’s internal memory management.

Affected Systems

All Chrome‑built desktop versions created before 148.0.7778.216 are affected. The issue arises in the ANGLE component that is used universally across stable channel releases.

Risk and Exploitability

The CVSS score of 8.3 classifies the problem as Critical, and the EPSS score is < 1%, while the vulnerability has not been listed in CISA’s KEV catalog. Exploitation requires the attacker to deliver a malicious HTML document that triggers the renderer bug, which typically occurs in a user‑initiated scenario rather than over the network. Because the bug can be leveraged once the renderer is compromised, the overall risk remains high until a patch is installed.

Generated by OpenCVE AI on May 29, 2026 at 16:28 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade to Chrome 148.0.7778.216 or newer to obtain the ANGLE use‑after‑free fix.
  • Ensure the renderer sandbox remains enabled; disabling sandbox isolation is not recommended.
  • If a patch cannot be applied immediately, limit the renderer’s network and system permissions by configuring host‑based firewall rules or applying a stringent content‑security policy that restricts access to ANGLE resources.

Generated by OpenCVE AI on May 29, 2026 at 16:28 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 29 May 2026 17:15:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
Linux
Linux linux Kernel
Microsoft
Microsoft windows
CPEs cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
Vendors & Products Apple
Apple macos
Linux
Linux linux Kernel
Microsoft
Microsoft windows

Fri, 29 May 2026 15:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 9.0, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H'}

 ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

cvssV3_1

{'score': 8.3, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H'}

Fri, 29 May 2026 12:15:00 +0000

Type Values Removed Values Added
Title chromium-browser: Use after free in ANGLE
Weaknesses CWE-825
References
Metrics threat_severity

None

 cvssV3_1

{'score': 9.0, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H'}

threat_severity

Critical

Fri, 29 May 2026 00:45:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Thu, 28 May 2026 22:45:00 +0000

Type Values Removed Values Added
Description Use after free in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
Weaknesses CWE-416
References

Subscriptions

Apple Macos
Google Chrome
Linux Linux Kernel
Microsoft Windows
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-05-29T14:58:32.154Z

Reserved: 2026-05-28T17:24:41.617Z

Link: CVE-2026-9877

cve-icon Vulnrichment

Updated: 2026-05-29T14:58:28.851Z

cve-icon NVD

Status : Analyzed

Published: 2026-05-28T23:16:45.643

Modified: 2026-05-29T17:00:09.780

Link: CVE-2026-9877

cve-icon Redhat

Severity : Critical

Publid Date: 2026-05-27T00:00:00Z

Links: CVE-2026-9877 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-29T16:30:02Z

Weaknesses