Skip to main content

Google Chrome CVE-2026-13791

| EUVDEUVD-2026-40477 HIGH
Improper Input Validation (CWE-20)
2026-06-30 chrome-cve-admin@google.com GHSA-8qww-3jh8-g7v3
8.1
CVSS 3.1 · Vendor: google
Share

Severity by source

Vendor (google) PRIMARY
8.1 HIGH
AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
vuln.today AI
7.5 HIGH

Description requires the victim to install a malicious extension, so UI:R and AC:H; no auth needed (PR:N) and full RCE gives C/I/A:H.

3.1 AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
4.0 AV:N/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
SUSE
HIGH
qualitative

Primary rating from Vendor (google).

CVSS VectorVendor: google

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

4
Analysis Generated
Jul 01, 2026 - 15:23 vuln.today
CVSS changed
Jul 01, 2026 - 15:22 NVD
8.1 (HIGH)
CVE Published
Jun 30, 2026 - 23:16 cve.org
UNKNOWN (no severity yet)
CVE Published
Jun 30, 2026 - 23:16 cve.org
HIGH 8.1

DescriptionCVE.org

Insufficient validation of untrusted input in Downloads in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. (Chromium security severity: High)

AnalysisAI

Arbitrary code execution in Google Chrome desktop before 150.0.7871.47 arises from insufficient input validation in the Downloads component, letting a crafted Chrome extension break out of its intended sandbox constraints. An attacker who first convinces a victim to install a malicious extension can leverage the flaw to run arbitrary code, which Chromium rates High severity. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Craft malicious Chrome extension
Delivery
Social-engineer user to install it
Exploit
Extension sends crafted download request
Execution
Downloads component mishandles untrusted input
Impact
Execute arbitrary code in browser

Vulnerability AssessmentAI

Exploitation Exploitation requires the attacker to first get the victim to install a malicious Chrome extension, and then have that extension issue a crafted request through the Downloads component - the specific concrete precondition named in the description. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment Signals are mixed and lean toward moderate real-world priority despite the 8.1 CVSS. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker publishes a plausible-looking Chrome extension (e.g., a productivity or theme add-on) and uses phishing or a fake listing to persuade a target to install it. Once installed, the extension issues a crafted download-related request that the Downloads component fails to validate, triggering arbitrary code execution in the victim's browser context. …
Remediation Vendor-released patch: update Google Chrome to 150.0.7871.47 or later on all desktop platforms; Chrome's built-in auto-update normally delivers this, so trigger a manual update via chrome://settings/help and relaunch to confirm the version, following the Stable channel advisory at https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0175352312.html. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Inventory current Chrome versions across all endpoints and identify users on versions before 150.0.7871.47. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Vendor StatusVendor

SUSE

Severity: Important
Product Status
SUSE Package Hub 15 SP7 Fixed
openSUSE Tumbleweed Fixed
SUSE Package Hub 15 SP7 Affected

Share

CVE-2026-13791 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy