PT-2026-35835 · Google · Google Chrome

Jungwoo Lee

Published

2026-04-07

Updated

2026-05-05

CVE-2026-7335

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 147.0.7727.138

Description A use after free issue in the media component allows a remote attacker to execute arbitrary code within a sandbox by utilizing a specially crafted HTML page. Use after free is a memory corruption flaw that occurs when an application continues to use a pointer after it has been freed.

Recommendations Update to version 147.0.7727.138 or later.

Fix

RCE

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2026-07078

CVE-2026-7335

ECHO-034F-B985-7C6B

OPENSUSE-SU-2026:10689-1

Affected Products

Google Chrome

PT-2026-35835 · Google · Google Chrome

CVE-2026-7335

Weakness Enumeration

Related Identifiers

Affected Products

References · 41