Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2026-9987

Опубликовано: 27 мая 2026
Источник: redhat
CVSS3: 7.3
EPSS Низкий

Описание

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 148.0.7778.216 allowed a local attacker to execute arbitrary code via a malicious file. (Chromium security severity: High)

An insufficient validation of untrusted input flaw was found in the WebAppInstalls component of the Chromium browser. Upstream bug(s): https://code.google.com/p/chromium/issues/detail?id=513046475

Отчет

Red Hat Product Security rates the severity of this flaw as determined by the Google Chrome Security Advisory.

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-1286
https://bugzilla.redhat.com/show_bug.cgi?id=2483046chromium-browser: Insufficient validation of untrusted input in WebAppInstalls

EPSS

Процентиль: 1%
0.00099
Низкий

7.3 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2026-9987

CVSS3: 7.8
nvd
30 дней назад

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 148.0.7778.216 allowed a local attacker to execute arbitrary code via a malicious file. (Chromium security severity: High)

debian логотип

CVE-2026-9987

CVSS3: 7.8
debian
30 дней назад

Insufficient validation of untrusted input in WebAppInstalls in Google ...

github логотип

GHSA-3p35-rr8v-cfg2

CVSS3: 7.8
github
30 дней назад

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 148.0.7778.216 allowed a local attacker to execute arbitrary code via a malicious file. (Chromium security severity: High)

suse-cvrf логотип

openSUSE-SU-2026:20849-1

suse-cvrf
28 дней назад

Security update for chromium

EPSS

Процентиль: 1%
0.00099
Низкий

7.3 High

CVSS3