Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2026-9939

Опубликовано: 27 мая 2026
Источник: redhat
CVSS3: 8.8
EPSS Низкий

Описание

Heap buffer overflow in WebCodecs in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

A heap buffer overflow flaw was found in the WebCodecs component of the Chromium browser. Upstream bug(s): https://code.google.com/p/chromium/issues/detail?id=502735235

Отчет

Red Hat Product Security rates the severity of this flaw as determined by the Google Chrome Security Advisory.

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-120
https://bugzilla.redhat.com/show_bug.cgi?id=2483005chromium-browser: Heap buffer overflow in WebCodecs

EPSS

Процентиль: 33%
0.00412
Низкий

8.8 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2026-9939

CVSS3: 8.8
nvd
29 дней назад

Heap buffer overflow in WebCodecs in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

msrc логотип

CVE-2026-9939

msrc
28 дней назад

Chromium: CVE-2026-9939 Heap buffer overflow in WebCodecs

debian логотип

CVE-2026-9939

CVSS3: 8.8
debian
29 дней назад

Heap buffer overflow in WebCodecs in Google Chrome prior to 148.0.7778 ...

github логотип

GHSA-c7jh-hgv7-r6m2

CVSS3: 8.8
github
29 дней назад

Heap buffer overflow in WebCodecs in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

suse-cvrf логотип

openSUSE-SU-2026:20849-1

suse-cvrf
27 дней назад

Security update for chromium

EPSS

Процентиль: 33%
0.00412
Низкий

8.8 High

CVSS3