Severity by source
AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Network-delivered via HTML page (AV:N), no special conditions (AC:L), no authentication needed (PR:N), victim must visit attacker page (UI:R), information disclosure only with no integrity or availability impact (C:H/I:N/A:N).
Primary rating from Vendor (google).
CVSS VectorVendor: google
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Lifecycle Timeline
4DescriptionCVE.org
Uninitialized Use in Codecs in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)
AnalysisAI
Uninitialized memory use in Chrome's codec subsystem on Windows leaks process memory contents to remote attackers who can direct a user to a crafted HTML page. All Chrome versions prior to 150.0.7871.47 on Windows are affected; exploitation requires no authentication but does require the victim to visit attacker-controlled content, placing this in the drive-by browsing threat category. …
Unlock full vulnerability intelligence
- Risk assessment & exploitation conditions
- Attack chain visualization
- Remediation with exact patch versions
- Threat intelligence from 22 sources
- Personal watchlist & email alerts
Free forever · No credit card required
Attack ChainAIDerived
Hypothetical attack flow derived from CVE metadata
Vulnerability AssessmentAI
| Exploitation | Exploitation requires: (1) the target must be running Google Chrome on Windows - the vulnerability is platform-specific and does not affect Chrome on macOS or Linux; (2) the victim must actively navigate to or be redirected to an attacker-controlled HTML page containing the crafted codec content (CVSS UI:R - passive exploitation without user interaction is not indicated); (3) no authentication to Chrome or any service is required (CVSS PR:N). … Additional conditions and limiting factors are described in the full assessment. |
| Risk Assessment | The CVSS 3.1 base score of 6.5 (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N) accurately reflects a meaningful but bounded risk: confidentiality impact is High (arbitrary process memory readable), but integrity and availability are unaffected, and exploitation requires user interaction. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in. |
| Exploit Scenario | An attacker hosts a web page containing a crafted media resource - such as a specially constructed audio or video stream - that triggers the uninitialized codec code path in Chrome on Windows. When a Windows user visits this page, Chrome's codec component reads from uninitialized memory and the attacker receives fragments of renderer process memory in the response, potentially containing session tokens, cached credentials, or other sensitive data recently processed within the same process. … |
| Remediation | The primary remediation is to update Google Chrome on Windows to version 150.0.7871.47 or later, confirmed available via the vendor's stable channel release at http://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0175352312.html. … Detailed patch versions, workarounds, and compensating controls in full report. |
Threat intelligence, references, and detailed analysis are available after sign-in.
Same weakness CWE-457 – Use of Uninitialized Variable
View allSame technique Information Disclosure
View allVendor StatusVendor
SUSE
Severity: Moderate| Product | Status |
|---|---|
| SUSE Package Hub 15 SP7 | Fixed |
| openSUSE Tumbleweed | Fixed |
| SUSE Package Hub 15 SP7 | Affected |
Share
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-40698
GHSA-m6w7-672m-rg27