CVE-2026-5860

Опубликовано: 08 апр. 2026

Источник: debian

EPSS Низкий

Описание

Use after free in WebRTC in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
chromium	fixed	147.0.7727.55-1		package
chromium	end-of-life		bullseye	package

EPSS

Процентиль: 10%

0.00033

Низкий

Связанные уязвимости

CVE-2026-5860

ubuntu

6 дней назад

Use after free in WebRTC in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

CVE-2026-5860

CVSS3: 9.6

redhat

8 дней назад

Use after free in WebRTC in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

CVE-2026-5860

nvd

6 дней назад

Use after free in WebRTC in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

CVE-2026-5860

msrc

4 дня назад

Chromium: CVE-2026-5860 Use after free in WebRTC

GHSA-rjhq-52xc-gxc5

CVSS3: 8.8

github

6 дней назад

Use after free in WebRTC in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

EPSS

Процентиль: 10%

0.00033

Низкий