Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2026-9960

Опубликовано: 27 мая 2026
Источник: redhat
CVSS3: 8.8
EPSS Низкий

Описание

Integer overflow in PDFium in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted font file. (Chromium security severity: High)

An integer overflow flaw was found in the PDFium component of the Chromium browser. Upstream bug(s): https://code.google.com/p/chromium/issues/detail?id=504573260

Отчет

Red Hat Product Security rates the severity of this flaw as determined by the Google Chrome Security Advisory.

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-190
https://bugzilla.redhat.com/show_bug.cgi?id=2483061chromium-browser: Integer overflow in PDFium

EPSS

Процентиль: 14%
0.00235
Низкий

8.8 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2026-9960

CVSS3: 7.5
nvd
29 дней назад

Integer overflow in PDFium in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted font file. (Chromium security severity: High)

msrc логотип

CVE-2026-9960

msrc
28 дней назад

Chromium: CVE-2026-9960 Integer overflow in PDFium

debian логотип

CVE-2026-9960

CVSS3: 7.5
debian
29 дней назад

Integer overflow in PDFium in Google Chrome prior to 148.0.7778.216 al ...

github логотип

GHSA-7w34-gvpm-fpjm

CVSS3: 7.5
github
29 дней назад

Integer overflow in PDFium in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted font file. (Chromium security severity: High)

suse-cvrf логотип

openSUSE-SU-2026:20849-1

suse-cvrf
27 дней назад

Security update for chromium

EPSS

Процентиль: 14%
0.00235
Низкий

8.8 High

CVSS3