Skip to main content

Google Chrome CVE-2026-13872

| EUVDEUVD-2026-40558 CRITICAL
Improper Input Validation (CWE-20)
2026-06-30 chrome-cve-admin@google.com GHSA-pmm6-hfr7-6gqf
9.1
CVSS 3.1 · Vendor: google
Share

Severity by source

Vendor (google) PRIMARY
9.1 CRITICAL
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
vuln.today AI
8.5 HIGH

Description says local attacker via a malicious file, so AV:L and UI:R; sandbox escape crosses the isolation boundary giving S:C with high integrity/availability impact.

3.1 AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:H
4.0 AV:L/AC:L/AT:N/PR:N/UI:P/VC:L/VI:H/VA:H/SC:L/SI:H/SA:H
SUSE
CRITICAL
qualitative

Primary rating from Vendor (google).

CVSS VectorVendor: google

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
High
Availability
High

Lifecycle Timeline

4
Analysis Generated
Jul 01, 2026 - 15:27 vuln.today
CVSS changed
Jul 01, 2026 - 15:22 NVD
9.1 (CRITICAL)
CVE Published
Jun 30, 2026 - 23:17 cve.org
UNKNOWN (no severity yet)
CVE Published
Jun 30, 2026 - 23:17 cve.org
CRITICAL 9.1

DescriptionCVE.org

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.47 allowed a local attacker to potentially perform a sandbox escape via a malicious file. (Chromium security severity: Medium)

AnalysisAI

Sandbox escape in Google Chrome for Android before 150.0.7871.47 lets a local attacker break out of the renderer/browser sandbox by feeding a malicious file into the WebAppInstalls component, which insufficiently validates untrusted input (CWE-20). Chromium rates the security severity as Medium, and no public exploit has been identified at time of analysis; EPSS estimates only a 0.13% (3rd percentile) chance of exploitation in the next 30 days. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Deliver malicious file to Android device
Delivery
Induce Chrome WebAppInstalls to process file
Exploit
Trigger input-validation flaw (CWE-20)
Execution
Escape browser sandbox
Impact
Access resources outside sandbox

Vulnerability AssessmentAI

Exploitation Exploitation requires a locally delivered malicious file that is processed by the WebAppInstalls (web app / PWA installation) component of Chrome on Android - this is the exact feature that must be exercised. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The signals conflict and should be reconciled before prioritization. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker delivers a crafted file to a victim's Android device (for example via a download, messaging app, or shared storage) and induces Chrome's WebAppInstalls flow to process it. The malformed input bypasses input validation and lets the attacker escape Chrome's sandbox, gaining influence over resources outside the browser's isolation boundary. …
Remediation Vendor-released patch: update Google Chrome on Android to 150.0.7871.47 or later via Google Play or Chrome's built-in updater, then restart the browser to complete the update; this is the primary and sufficient fix. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Inventory all Android devices running Chrome before version 150.0.7871.47 using mobile device management (MDM) or enterprise inventory tools. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Vendor StatusVendor

SUSE

Severity: Critical
Product Status
SUSE Package Hub 15 SP7 Fixed
openSUSE Tumbleweed Fixed
SUSE Package Hub 15 SP7 Affected

Share

CVE-2026-13872 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy