Description
Use after free in SurfaceCapture in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Published: 2026-05-28
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A use‑after‑free flaw occurs in Chrome’s SurfaceCapture component, enabling a remote attacker to supply a specially crafted HTML page that triggers heap corruption. The vulnerability is classified as a high‑severity memory corruption issue (CWE‑416) and also represents an inadequate protection against released data vulnerability (CWE‑825). The description indicates that the attacker may exploit the resulting heap corruption, but specific secondary impacts such as code execution are not explicitly detailed in this advisory.

Affected Systems

Google Chrome browsers running any version earlier than 148.0.7778.216 are susceptible. The issue is present on all desktop operating systems where the SurfaceCapture feature is enabled.

Risk and Exploitability

The vulnerability is not listed in the CISA Known Exploited Vulnerabilities catalog, and its EPSS score is less than 1%, indicating limited publicly known exploitation evidence. The CVSS score of 8.8 indicates a high severity. The bug can be triggered remotely simply by visiting a malicious web page. Given its high severity classification, the risk level is elevated for users who encounter untrusted web content, although no publicly documented exploits are known.

Generated by OpenCVE AI on May 29, 2026 at 14:38 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Chrome to version 148.0.7778.216 or later, as released by Google.
  • Monitor system logs for crashes or anomalous memory usage that may indicate exploitation attempts.
  • Maintain an up‑to‑date endpoint protection platform and look for anomalous browser behavior, such as unexpected crashes, which may signal exploitation attempts.

Generated by OpenCVE AI on May 29, 2026 at 14:38 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 29 May 2026 18:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 29 May 2026 12:15:00 +0000

Type Values Removed Values Added
Title Use‑After‑Free in Chrome SurfaceCapture Enables Heap Corruption via Crafted HTML chromium-browser: Use after free in SurfaceCapture
Weaknesses CWE-825
References
Metrics threat_severity

None

 cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}

threat_severity

Important

Fri, 29 May 2026 01:45:00 +0000

Type Values Removed Values Added
Title Use‑After‑Free in Chrome SurfaceCapture Enables Heap Corruption via Crafted HTML

Fri, 29 May 2026 01:00:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Thu, 28 May 2026 22:45:00 +0000

Type Values Removed Values Added
Description Use after free in SurfaceCapture in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Weaknesses CWE-416
References

Subscriptions

Google Chrome
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-05-29T17:56:49.946Z

Reserved: 2026-05-28T17:25:01.337Z

Link: CVE-2026-9961

cve-icon Vulnrichment

Updated: 2026-05-29T17:56:40.070Z

cve-icon NVD

Status : Undergoing Analysis

Published: 2026-05-28T23:16:54.320

Modified: 2026-05-29T19:16:30.630

Link: CVE-2026-9961

cve-icon Redhat

Severity : Important

Publid Date: 2026-05-27T00:00:00Z

Links: CVE-2026-9961 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-29T14:45:06Z

Weaknesses