Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-gxc3-xj8w-g58j

Опубликовано: 09 апр. 2026
Источник: github
Github: Не прошло ревью
CVSS3: 9.6

Описание

Use after free in PrivateAI in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)

Use after free in PrivateAI in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)

Ссылки

EPSS

Процентиль: 21%
0.00068
Низкий

9.6 Critical

CVSS3

CVE ID

CVE-2026-5874

Дефекты

CWE-416

Связанные уязвимости

ubuntu логотип

CVE-2026-5874

CVSS3: 9.6
ubuntu
6 дней назад

Use after free in PrivateAI in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)

redhat логотип

CVE-2026-5874

CVSS3: 9.6
redhat
6 дней назад

Use after free in PrivateAI in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)

nvd логотип

CVE-2026-5874

CVSS3: 9.6
nvd
6 дней назад

Use after free in PrivateAI in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)

msrc логотип

CVE-2026-5874

msrc
4 дня назад

Chromium: CVE-2026-5874 Use after free in PrivateAI

debian логотип

CVE-2026-5874

CVSS3: 9.6
debian
6 дней назад

Use after free in PrivateAI in Google Chrome prior to 147.0.7727.55 al ...

EPSS

Процентиль: 21%
0.00068
Низкий

9.6 Critical

CVSS3

CVE ID

CVE-2026-5874

Дефекты

CWE-416