Description
Heap buffer overflow in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
Published: 2026-05-28
Score: 8.3 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A heap buffer overflow exists in the ANGLE component of Google Chrome. Exploitation requires an attacker to first compromise the renderer process, likely through an earlier vulnerability or social engineering, although this was not explicitly stated. Once the renderer is compromised, a specially crafted HTML page can trigger the overflow and allow the attacker to escape the browser sandbox, potentially executing arbitrary code with system privileges. The weaknesses are identified as heap‑based buffer overflows (CWE-122) and buffer overflow boundary violations (CWE-787).

Affected Systems

Google Chrome versions prior to 148.0.7778.216 are affected. Users running any earlier stable channel are at risk until they upgrade to the patched version or later.

Risk and Exploitability

The CVSS score is 9.0, confirming a high severity. The EPSS score is <1%, indicating a very low but non-zero likelihood of exploitation in the wild. The vulnerability is not listed in the CISA KEV catalog. Exploitation requires an attacker to first compromise the renderer process, which may be achieved via prior exploitation or social engineering. Once compromised, a crafted HTML page can trigger the overflow and allow sandbox escape, potentially permitting execution of arbitrary code with system privileges.

Generated by OpenCVE AI on May 29, 2026 at 15:37 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Google Chrome to version 148.0.7778.216 or later
  • Restart Chrome after updating to ensure the patch is applied
  • Enable Chrome’s advanced sandboxing policies and monitor for any renderer process compromise

Generated by OpenCVE AI on May 29, 2026 at 15:37 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 29 May 2026 16:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 9.0, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H'}

 ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

cvssV3_1

{'score': 8.3, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H'}

Fri, 29 May 2026 12:15:00 +0000

Type Values Removed Values Added
Title Heap Buffer Overflow in Chrome’s ANGLE Component Enables Sandbox Escape chromium-browser: Heap buffer overflow in ANGLE
Weaknesses CWE-787
References
Metrics threat_severity

None

 cvssV3_1

{'score': 9.0, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H'}

threat_severity

Important

Fri, 29 May 2026 03:15:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Fri, 29 May 2026 00:45:00 +0000

Type Values Removed Values Added
Title Heap Buffer Overflow in Chrome’s ANGLE Component Enables Sandbox Escape

Thu, 28 May 2026 22:45:00 +0000

Type Values Removed Values Added
Description Heap buffer overflow in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
Weaknesses CWE-122
References

Subscriptions

Google Chrome
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-05-29T15:51:24.797Z

Reserved: 2026-05-28T17:24:50.359Z

Link: CVE-2026-9915

cve-icon Vulnrichment

Updated: 2026-05-29T15:51:21.946Z

cve-icon NVD

Status : Undergoing Analysis

Published: 2026-05-28T23:16:49.593

Modified: 2026-05-29T16:16:37.457

Link: CVE-2026-9915

cve-icon Redhat

Severity : Important

Publid Date: 2026-05-27T00:00:00Z

Links: CVE-2026-9915 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-29T15:45:16Z

Weaknesses