How is CVE-2026-9895 exploited?

Network reachability (required): The attacker must reach the victim over the network by delivering a crafted HTML page, making network exposure a prerequisite. Authentication (not-required): No credentials or account are needed; the attacker operates without any authentication to the target. Victim interaction (required): The victim must open a crafted HTML page in the browser, requiring a social-engineering step to direct the user to attacker-controlled content. Attack complexity (info): Exploitation is rated High complexity because it depends on the attacker having already compromised the renderer process, introducing a significant environmental precondition before the GPU out-of-bounds read can be leveraged.

What is the impact of CVE-2026-9895?

Reads arbitrary memory outside the intended GPU buffer, which can expose sensitive in-process data including rendered page content and session material. Writes outside the intended buffer boundary, allowing the attacker to tamper with GPU process state or inject controlled data into adjacent memory regions. Escapes the Chrome renderer sandbox, breaking the primary isolation boundary and granting the attacker code execution with the privileges of the browser process on the host. Full compromise of confidentiality, integrity, and availability of the affected process, extending impact beyond the browser tab to the underlying host context.

Back to search

HIGHCVE-2026-9895Published 2026-05-28Modified 2026-05-30CNA Chrome

CVE-2026-9895: Out of bounds read in GPU in Google Chrome prior to 148

Out of bounds read in GPU in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

HarborGuard Analysis

HarborGuard analysis

Synopsis

Out-of-bounds read in the GPU component of Google Chrome prior to version 148.0.7778.216. The vulnerability is reachable over the network but requires the attacker to have already compromised the renderer process and requires the victim to visit a crafted HTML page; no credentials are needed. Successful exploitation enables a sandbox escape, giving the attacker elevated access outside the Chrome renderer sandbox with high impact to confidentiality, integrity, and availability. A patched-image rebuild at 148.0.7778.216 is available on HarborGuard for environments running an affected version.

HarborGuard Coverage

Detection

Detection of CVE-2026-9895 is available across every HarborGuard environment, with the CVE matched against images in customer registries and CI/CD pipelines within minutes of publication from upstream feeds. This matching capability covers custom-built images that bundle Chrome or Chromium, not just official base images.

Available

Triage

HarborGuard is capable of scoring this CVE at CVSS 8.3 (High) and weighting it against each environment's compliance policy to surface urgency accurately. Triage routing directs findings to the appropriate team inbox within each customer organization based on configured ownership rules.

Available

Patch

A patched-image rebuild at Chrome 148.0.7778.216 is available on HarborGuard for any environment where an affected version is detected. For customers who opt into auto-remediation, HarborGuard can trigger a rebuild, run a regression test suite, and open a pull request against affected workloads automatically.

Available

Exploit Conditions

Network reachabilityRequired
The attacker must reach the victim over the network by delivering a crafted HTML page, making network exposure a prerequisite.
AuthenticationNot required
No credentials or account are needed; the attacker operates without any authentication to the target.
Victim interactionRequired
The victim must open a crafted HTML page in the browser, requiring a social-engineering step to direct the user to attacker-controlled content.
Attack complexityDetail
Exploitation is rated High complexity because it depends on the attacker having already compromised the renderer process, introducing a significant environmental precondition before the GPU out-of-bounds read can be leveraged.

Blast Radius

Reads arbitrary memory outside the intended GPU buffer, which can expose sensitive in-process data including rendered page content and session material.
Writes outside the intended buffer boundary, allowing the attacker to tamper with GPU process state or inject controlled data into adjacent memory regions.
Escapes the Chrome renderer sandbox, breaking the primary isolation boundary and granting the attacker code execution with the privileges of the browser process on the host.
Full compromise of confidentiality, integrity, and availability of the affected process, extending impact beyond the browser tab to the underlying host context.

How HarborGuard Handles This

Available on HarborGuard: detection of this vulnerability fires as soon as the CVE is ingested, matching all images that bundle a Chrome or Chromium binary older than 148.0.7778.216. Given the High severity rating and the sandbox-escape impact, this CVE is prioritized in the triage queue and routed according to each environment's compliance policy. For customers who opt into auto-remediation, HarborGuard can rebuild affected images at 148.0.7778.216, run a regression test pass, and open a PR against affected workloads; median time from CVE publication to merged patch PR for high-severity issues is around 90 minutes for environments with auto-remediation enabled. Where compliance policy requires manual approval, the finding appears in the dashboard with the fix version pre-populated so engineers can act without additional research.

See how HarborGuard automates this

CVSS v3.1: 8.3
Severity: HIGH
Fixed in: 148.0.7778.216
Affected Products: 1

Fix available

148.0.7778.216

Affected packages

Google / Chrome
< 148.0.7778.216 (from 148.0.7778.216)

CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

References

HarborGuard Analysis

Synopsis

HarborGuard Coverage

Exploit Conditions

Blast Radius

How HarborGuard Handles This

Metrics

Fix available