Description
Out of bounds read and write in Dawn in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
Published: 2026-05-28
Score: 8.3 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is an out-of-bounds read and write in the Dawn rendering engine of Google Chrome for Android that can allow a remote attacker to escape the browser sandbox, potentially leading to execution of arbitrary code with elevated privileges. It is rated critical by Chromium security and could be used to compromise the confidentiality, integrity, and availability of the device if an attacker supplies a crafted HTML page.

Affected Systems

Affected are Chrome for Android versions prior to 148.0.7778.216. The issue applies to all devices running those Chrome builds, regardless of the underlying Android OS version. No other vendors or products are listed.

Risk and Exploitability

The EPSS score is <1%, indicating a very low but nonzero exploitation probability, although the exact likelihood of exploitation remains uncertain. The CVSS score is 8.3. It was not included in the CISA KEV catalog. The likely attack vector is a remote attacker sending a malicious HTML page that exploits the out-of-bounds memory access in Dawn to break out of the browser sandbox. No additional conditions are documented beyond the presence of the vulnerable Chrome version on Android.

Generated by OpenCVE AI on May 29, 2026 at 18:03 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Chrome for Android to version 148.0.7778.216 or newer. This is the official fix released by Google.
  • If an immediate update is not feasible, restrict access to untrusted HTML content by disabling automatic loading of mixed content and third-party scripts in Chrome settings. This reduces the window for exploitation until the patch can be applied.
  • Monitor Google's Chrome release notes and security advisories for any follow-up patches or additional mitigations for this issue.

Generated by OpenCVE AI on May 29, 2026 at 18:03 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DSA Debian DSA DSA-6316-1 chromium security update
History

Mon, 01 Jun 2026 18:45:00 +0000

Type Values Removed Values Added
First Time appeared Google android
CPEs cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
Vendors & Products Google android

Fri, 29 May 2026 16:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-787
Metrics cvssV3_1

{'score': 9.6, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H'}

 ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

cvssV3_1

{'score': 8.3, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H'}

Fri, 29 May 2026 14:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-788

Fri, 29 May 2026 12:15:00 +0000

Type Values Removed Values Added
Title Out-of-Bounds Read/Write in Chrome Dawn Leading to Potential Sandbox Escape on Android chromium-browser: Out of bounds read and write in Dawn
Weaknesses CWE-125
References
Metrics threat_severity

None

 cvssV3_1

{'score': 9.6, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H'}

threat_severity

Critical

Fri, 29 May 2026 01:00:00 +0000

Type Values Removed Values Added
Title Out-of-Bounds Read/Write in Chrome Dawn Leading to Potential Sandbox Escape on Android
Weaknesses CWE-788

Fri, 29 May 2026 00:00:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Thu, 28 May 2026 22:45:00 +0000

Type Values Removed Values Added
Description Out of bounds read and write in Dawn in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
References

Subscriptions

Google Android Chrome
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-05-30T03:56:53.080Z

Reserved: 2026-05-28T17:24:44.271Z

Link: CVE-2026-9889

cve-icon Vulnrichment

Updated: 2026-05-29T15:13:12.382Z

cve-icon NVD

Status : Analyzed

Published: 2026-05-28T23:16:46.893

Modified: 2026-06-01T18:44:39.550

Link: CVE-2026-9889

cve-icon Redhat

Severity : Critical

Publid Date: 2026-05-27T00:00:00Z

Links: CVE-2026-9889 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-29T18:15:04Z

Weaknesses