PT-2026-35833 · Google · Google Chrome
C6Eed09Fc8B174B0F3Eebedcceb1E792
·
Published
2026-03-19
·
Updated
2026-05-05
·
CVE-2026-7333
CVSS v3.1
10
Critical
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Google Chrome versions prior to 147.0.7727.138
Description
A use after free (a condition where a program continues to use a memory address after it has been freed) in the GPU component allows a remote attacker to potentially perform a sandbox escape via a crafted HTML page. This occurs when modifying the surface activation group vector while iterating through existing entries.
Recommendations
Update to version 147.0.7727.138 or later.
Fix
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Google Chrome