CVE-2026-9907

Опубликовано: 27 мая 2026

Источник: redhat

CVSS3: 6.5

EPSS Низкий

Описание

Out of bounds read in Dawn in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)

An out of bounds read flaw was found in the Dawn component of the Chromium browser. Upstream bug(s): https://code.google.com/p/chromium/issues/detail?id=499091269

Отчет

Red Hat Product Security rates the severity of this flaw as determined by the Google Chrome Security Advisory.

Ссылки на источники

Дополнительная информация

Статус:

Important

Дефект:

CWE-125

https://bugzilla.redhat.com/show_bug.cgi?id=2483076chromium-browser: Out of bounds read in Dawn

EPSS

Процентиль: 11%

0.00209

Низкий

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2026-9907

CVSS3: 4.3

nvd

28 дней назад

Out of bounds read in Dawn in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)

CVE-2026-9907

msrc

27 дней назад

Chromium: CVE-2026-9907 Out of bounds read in Dawn

CVE-2026-9907

CVSS3: 4.3

debian

28 дней назад

Out of bounds read in Dawn in Google Chrome on Windows prior to 148.0. ...

GHSA-mv3r-5x8j-pmcc

CVSS3: 4.3

github

27 дней назад

Out of bounds read in Dawn in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)

openSUSE-SU-2026:20849-1

suse-cvrf

26 дней назад

Security update for chromium

EPSS

Процентиль: 11%

0.00209

Низкий

6.5 Medium

CVSS3