PT-2026-41044 · Google · Google Chrome
Published
2026-05-12
·
Updated
2026-05-16
·
CVE-2026-8515
CVSS v3.1
8.3
High
| Vector | AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Google Chrome versions prior to 148.0.7778.168
Description
A use after free issue in the Human Interface Device (HID) component allows a remote attacker to potentially perform a sandbox escape. This occurs when a user is convinced to perform specific UI gestures while interacting with a crafted HTML page. Use after free is a memory corruption flaw that happens when an application continues to use a pointer after it has been freed.
Recommendations
Update Google Chrome to version 148.0.7778.168 or later.
Fix
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Google Chrome