Description
Use after free in PDFium in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)
Published: 2026-05-28
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The reported issue is a use‑after‑free flaw in PDFium, the PDF rendering engine used by Google Chrome. The bug allows a malicious PDF file to trigger heap corruption on the rendering thread, giving an attacker the possibility to execute arbitrary code or crash the browser. This weakness is identified as CWE‑416 and CWE‑825 and classified by Chromium as a high‑severity vulnerability.

Affected Systems

Google Chrome browsers older than version 148.0.7778.216 on desktop operating systems are affected. The flaw resides in the PDFium component that processes PDF documents before rendering them inside the browser. Users of these older releases are at risk if they open crafted PDF files from untrusted sources.

Risk and Exploitability

The EPSS score indicates a very low likelihood of exploitation (< 1 %). The CVSS score is 8.8, indicating high severity. This weakness involves both CWE‑416 and CWE‑825. The vulnerability was not reported in the CISA KEV catalog, indicating no documented widespread exploitation. Nevertheless, any remote adversary that can supply a malicious PDF file—such as via email attachment or compromised web page—could potentially exploit the bug. The attack vector is therefore inferred to be a remote exploitation through a malicious PDF that the victim opens in Chrome.

Generated by OpenCVE AI on May 29, 2026 at 15:48 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Google Chrome to version 148.0.7778.216 or later, which contains the PDFium use‑after‑free fix.
  • If an immediate upgrade is not possible, configure Chrome policies to block or redirect PDF opening to an external reader, thereby preventing PDFium from processing untrusted documents.
  • Use a standalone PDF reader to open unfamiliar PDF files instead of allowing Chrome to render them, ensuring the attack surface is limited.

Generated by OpenCVE AI on May 29, 2026 at 15:48 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 29 May 2026 18:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 29 May 2026 12:15:00 +0000

Type Values Removed Values Added
Title Use After Free in PDFium Enables Potential Heap Corruption in Chrome chromium-browser: Use after free in PDFium
Weaknesses CWE-825
References
Metrics threat_severity

None

 cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}

threat_severity

Important

Fri, 29 May 2026 01:00:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Fri, 29 May 2026 00:15:00 +0000

Type Values Removed Values Added
Title Use After Free in PDFium Enables Potential Heap Corruption in Chrome

Thu, 28 May 2026 22:45:00 +0000

Type Values Removed Values Added
Description Use after free in PDFium in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)
Weaknesses CWE-416
References

Subscriptions

Google Chrome
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-05-29T17:54:58.845Z

Reserved: 2026-05-28T17:25:00.563Z

Link: CVE-2026-9958

cve-icon Vulnrichment

Updated: 2026-05-29T17:54:55.329Z

cve-icon NVD

Status : Undergoing Analysis

Published: 2026-05-28T23:16:54.000

Modified: 2026-05-29T19:16:30.470

Link: CVE-2026-9958

cve-icon Redhat

Severity : Important

Publid Date: 2026-05-27T00:00:00Z

Links: CVE-2026-9958 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-29T16:00:15Z

Weaknesses