GHSA-2wcg-7wr3-q72q

Опубликовано: 29 мая 2026

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

Use after free in PDFium in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)

Ссылки

EPSS

Процентиль: 13%

0.00224

Низкий

8.8 High

CVSS3

CVE ID

CVE-2026-9958

Дефекты

CWE-416

Связанные уязвимости

CVE-2026-9958

CVSS3: 8.8

redhat

около 1 месяца назад

Use after free in PDFium in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)

CVE-2026-9958

CVSS3: 8.8

nvd

29 дней назад

Use after free in PDFium in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)