PT-2026-44581 · Google · Chrome On Android

Published

2026-05-28

Updated

2026-06-02

CVE-2026-9872

CVSS v3.1

9.6

Critical

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 148.0.7778.216

Description An out of bounds write in the GPU allows a remote attacker to potentially perform a sandbox escape by using a crafted HTML page. A sandbox escape is a technique used to break out of a restricted environment to gain unauthorized access to the underlying system.

Recommendations Update to version 148.0.7778.216 or later.

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2026-9872

ECHO-B9AF-DF64-A726

OPENSUSE-SU-2026:10906-1

Affected Products

Chrome On Android

PT-2026-44581 · Google · Chrome On Android

CVE-2026-9872

Weakness Enumeration

Related Identifiers

Affected Products

References · 162