Description
Use after free in Input in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
Published: 2026-05-28
Score: 8.3 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A use‑after‑free error in Chrome’s input handling allows a compromised renderer process to potentially escape its sandbox when processing a specially crafted HTML page, giving an attacker the ability to execute code with higher privileges. The Chromium team rates this issue as high severity, indicating that successful exploitation could lead to full system compromise or theft of sensitive data.

Affected Systems

The vulnerability affects Google Chrome. All installations of Chrome older than version 148.0.7778.216 are potentially exposed. Based on the description, it is inferred that the issue relates to the renderer process's internal input subsystem.

Risk and Exploitability

The EPSS score of less than 1% indicates a very low but nonzero probability of exploitation. The CVSS score of 8.3 denotes a high‑severity vulnerability that could result in sandbox escape and execution of code at higher privileges. The attack vector is remote; it requires an already compromised renderer to receive a specially crafted HTML page. Although the exploitation probability is low, the potential impact makes the risk significant for any system running an affected Chrome version.

Generated by OpenCVE AI on May 29, 2026 at 17:05 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Google Chrome to version 148.0.7778.216 or newer, which contains the fix for the use‑after‑free bug.
  • Limit the use of untrusted or user‑generated HTML content, or disable such features if the site does not require them.
  • Verify that external extensions or plugins are kept up to date and are from trusted sources, as they may influence renderer behavior.

Generated by OpenCVE AI on May 29, 2026 at 17:05 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 29 May 2026 17:00:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
Linux
Linux linux Kernel
Microsoft
Microsoft windows
CPEs cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
Vendors & Products Apple
Apple macos
Linux
Linux linux Kernel
Microsoft
Microsoft windows

Fri, 29 May 2026 15:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 9.0, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H'}

 ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

cvssV3_1

{'score': 8.3, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H'}

Fri, 29 May 2026 12:15:00 +0000

Type Values Removed Values Added
Title Use‑After‑Free in Chrome Input Enables Renderer Sandbox Escape chromium-browser: Use after free in Input
Weaknesses CWE-825
References
Metrics threat_severity

None

 cvssV3_1

{'score': 9.0, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H'}

threat_severity

Important

Fri, 29 May 2026 00:45:00 +0000

Type Values Removed Values Added
Title Use‑After‑Free in Chrome Input Enables Renderer Sandbox Escape
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Thu, 28 May 2026 22:45:00 +0000

Type Values Removed Values Added
Description Use after free in Input in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
Weaknesses CWE-416
References

Subscriptions

Apple Macos
Google Chrome
Linux Linux Kernel
Microsoft Windows
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-05-29T14:34:42.979Z

Reserved: 2026-05-28T17:25:10.574Z

Link: CVE-2026-9997

cve-icon Vulnrichment

Updated: 2026-05-29T14:34:39.441Z

cve-icon NVD

Status : Analyzed

Published: 2026-05-28T23:16:57.933

Modified: 2026-05-29T16:51:15.490

Link: CVE-2026-9997

cve-icon Redhat

Severity : Important

Publid Date: 2026-05-27T00:00:00Z

Links: CVE-2026-9997 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-29T17:15:04Z

Weaknesses