PT-2026-38142 · Google · Skia+1

Published

2026-03-25

Updated

2026-05-14

CVE-2026-7949

CVSS v3.1

3.1

Low

Vector

AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96

Description An out of bounds read in Skia allows a remote attacker who has compromised the renderer process to leak cross-origin data through a crafted Chrome Extension. An out of bounds read occurs when a program reads data past the end or before the beginning of the intended buffer.

Recommendations Update to version 148.0.7778.96 or later.

Fix

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

BDU:2026-07063

CVE-2026-7949

ECHO-68B5-C455-B2FB

OPENSUSE-SU-2026:10778-1

Affected Products

Google Chrome

Skia

PT-2026-38142 · Google · Skia+1

CVE-2026-7949

Weakness Enumeration

Related Identifiers

Affected Products

References · 142