Description
Out of bounds read and write in Dawn in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
Published: 2026-05-28
Score: 9.6 Critical
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is an out‑of‑bounds read and write in the Dawn rendering engine of Google Chrome for Android that can allow a remote attacker to escape the browser sandbox, potentially leading to execution of arbitrary code with elevated privileges. It is rated critical by Chromium security and could be used to compromise the confidentiality, integrity, and availability of the device if an attacker supplies a crafted HTML page.

Affected Systems

Affected are Chrome for Android versions prior to 148.0.7778.216. The issue applies to all devices running those Chrome builds, regardless of the underlying Android OS version. No other vendors or products are listed.

Risk and Exploitability

The EPSS score is unavailable, so the exact likelihood of exploitation is unknown, but the vulnerability is listed as critical by Chromium security. The CVSS score is 9.6. It was not included in the CISA KEV catalog. The likely attack vector is a remote attacker sending a malicious HTML page that exploits the out‑of‑bounds memory access in Dawn to break out of the browser sandbox. No additional conditions are documented beyond the presence of the vulnerable Chrome version on Android.

Generated by OpenCVE AI on May 29, 2026 at 14:22 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Chrome for Android to version 148.0.7778.216 or newer. This is the official fix released by Google.
  • If an immediate update is not feasible, restrict access to untrusted HTML content by disabling automatic loading of mixed content and third‑party scripts in Chrome settings. This reduces the window for exploitation until the patch can be applied.
  • Monitor Google’s Chrome release notes and security advisories for any follow‑up patches or additional mitigations for this issue.

Generated by OpenCVE AI on May 29, 2026 at 14:22 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 29 May 2026 14:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-788

Fri, 29 May 2026 12:15:00 +0000

Type Values Removed Values Added
Title Out-of-Bounds Read/Write in Chrome Dawn Leading to Potential Sandbox Escape on Android chromium-browser: Out of bounds read and write in Dawn
Weaknesses CWE-125
References
Metrics threat_severity

None

 cvssV3_1

{'score': 9.6, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H'}

threat_severity

Critical

Fri, 29 May 2026 01:00:00 +0000

Type Values Removed Values Added
Title Out-of-Bounds Read/Write in Chrome Dawn Leading to Potential Sandbox Escape on Android
Weaknesses CWE-788

Fri, 29 May 2026 00:00:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Thu, 28 May 2026 22:45:00 +0000

Type Values Removed Values Added
Description Out of bounds read and write in Dawn in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
References

Subscriptions

Google Chrome
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-05-28T22:25:13.726Z

Reserved: 2026-05-28T17:24:44.271Z

Link: CVE-2026-9889

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-28T23:16:46.893

Modified: 2026-05-29T02:35:42.620

Link: CVE-2026-9889

cve-icon Redhat

Severity : Critical

Publid Date: 2026-05-27T00:00:00Z

Links: CVE-2026-9889 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-29T14:30:37Z

Weaknesses