CVE-2026-2441

Опубликовано: 13 фев. 2026

Источник: redhat

CVSS3: 8.8

EPSS Низкий

Описание

Use after free in CSS in Google Chrome prior to 145.0.7632.75 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

An use after free flaw was found in the CSS component of the Chromium browser.

Отчет

Red Hat Product Security rates the severity of this flaw as determined by the Google Chrome Security Advisory.

Ссылки на источники

Дополнительная информация

Статус:

Important

https://bugzilla.redhat.com/show_bug.cgi?id=2439743chromium-browser: Use after free in CSS

EPSS

Процентиль: 40%

0.00182

Низкий

8.8 High

CVSS3

Связанные уязвимости

CVE-2026-2441

CVSS3: 8.8

nvd

около 1 месяца назад

Use after free in CSS in Google Chrome prior to 145.0.7632.75 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

CVE-2026-2441

msrc

около 1 месяца назад

Chromium: CVE-2026-2441 Use after free in CSS

CVE-2026-2441

CVSS3: 8.8

debian

около 1 месяца назад

Use after free in CSS in Google Chrome prior to 145.0.7632.75 allowed ...

GHSA-xpp8-qpcr-c3rg

CVSS3: 8.8

github

около 1 месяца назад

Use after free in CSS in Google Chrome prior to 145.0.7632.75 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

BDU:2026-01947

CVSS3: 8.8

fstec

около 1 месяца назад

Уязвимость компонента CSS браузера Google Chrome, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 40%

0.00182

Низкий

8.8 High

CVSS3