CVE-2026-3918

Опубликовано: 10 мар. 2026

Источник: redhat

CVSS3: 8.8

EPSS Низкий

Описание

An use after free flaw was found in the WebMCP component of the Chromium browser. Upstream bug(s): https://code.google.com/p/chromium/issues/detail?id=483853103

Отчет

Red Hat Product Security rates the severity of this flaw as determined by the Google Chrome Security Advisory.

Ссылки на источники

Дополнительная информация

Статус:

Important

https://bugzilla.redhat.com/show_bug.cgi?id=2446844chromium-browser: Use after free in WebMCP

EPSS

Процентиль: 29%

0.00108

Низкий

8.8 High

CVSS3

Связанные уязвимости

CVE-2026-3918

CVSS3: 8.8

nvd

15 дней назад

Use after free in WebMCP in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVE-2026-3918

msrc

14 дней назад

Chromium: CVE-2026-3918 Use after free in WebMCP

CVE-2026-3918

CVSS3: 8.8

debian

15 дней назад

Use after free in WebMCP in Google Chrome prior to 146.0.7680.71 allow ...

GHSA-j53j-3fvf-64m5

CVSS3: 8.8

github

15 дней назад

Use after free in WebMCP in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

openSUSE-SU-2026:20372-1

suse-cvrf

10 дней назад

Security update for chromium

EPSS

Процентиль: 29%

0.00108

Низкий

8.8 High

CVSS3