CVE-2026-7957

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Google Chrome on Mac and iOS versions prior to 148.0.7778.96

Description An out-of-bounds write issue exists in the Media component. This allows a remote attacker who has already compromised the renderer process to execute arbitrary code within a sandbox by using a specially crafted HTML page. An out-of-bounds write occurs when a program writes data past the end of an intended buffer, which can lead to memory corruption.

Recommendations Update Google Chrome on Mac and iOS to version 148.0.7778.96 or later.

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

BDU:2026-07050

CVE-2026-7957

ECHO-7065-F0B1-8DF3

OPENSUSE-SU-2026:10778-1

Affected Products

Google Chrome

CVE-2026-7957

Weakness Enumeration

Related Identifiers

Affected Products

References · 138