HIGHCVE-2026-7957Published Modified CNA Chrome
CVE-2026-7957: Out of bounds write in Media in Google Chrome on Mac, iOS prior to 148
Out of bounds write in Media in Google Chrome on Mac, iOS prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)
Metrics
- CVSS v3.1
- 8.8
- Severity
- HIGH
- Fixed in
- 148.0.7778.96
- Affected Products
- 1
Fix available
148.0.7778.96
Affected packages
- Google / Chrome< 148.0.7778.96 (from 148.0.7778.96)
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H