CVE-2026-5286

Опубликовано: 01 апр. 2026

Источник: debian

EPSS Низкий

Описание

Use after free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
chromium	fixed	146.0.7680.177-1		package
chromium	end-of-life		bullseye	package

EPSS

Процентиль: 22%

0.00074

Низкий

Связанные уязвимости

CVE-2026-5286

CVSS3: 9.6

redhat

8 дней назад

Use after free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)

CVE-2026-5286

CVSS3: 8.8

nvd

6 дней назад

Use after free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)

CVE-2026-5286

msrc

5 дней назад

Chromium: CVE-2026-5286 Use after free in Dawn

GHSA-w4gr-836p-x38h

CVSS3: 8.8

github

6 дней назад

Use after free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)

EPSS

Процентиль: 22%

0.00074

Низкий