Skip to main content

Google Chrome CVE-2026-15107

| EUVDEUVD-2026-42459 HIGH
Use After Free (CWE-416)
2026-07-08 chrome-cve-admin@google.com GHSA-rmv3-p6fw-xh3h
8.8
CVSS 3.1 · Vendor: google
Share

Severity by source

Vendor (google) PRIMARY
8.8 HIGH
AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
vuln.today AI
8.8 HIGH

Reachable from any web page with no auth (AV:N/PR:N) but needs the victim to open it (UI:R); execution stays in the sandboxed renderer so S:U with high renderer C/I/A.

3.1 AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
4.0 AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Primary rating from Vendor (google).

CVSS VectorVendor: google

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

4
Analysis Generated
Jul 09, 2026 - 11:33 vuln.today
CVSS changed
Jul 09, 2026 - 11:22 NVD
8.8 (HIGH)
CVE Published
Jul 08, 2026 - 23:16 cve.org
UNKNOWN (no severity yet)
CVE Published
Jul 08, 2026 - 23:16 cve.org
HIGH 8.8

DescriptionCVE.org

Use after free in IndexedDB in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)

AnalysisAI

Renderer-process code execution in Google Chrome desktop before 150.0.7871.115 arises from a use-after-free in the IndexedDB implementation, letting a remote attacker run arbitrary code within the Chromium sandbox when a victim opens a crafted HTML page. Chromium rated the flaw Medium severity even though the CVSS base score is 8.8, reflecting that execution is confined to the sandboxed renderer rather than the host. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Lure victim to crafted HTML page
Delivery
Page JavaScript drives IndexedDB operations
Exploit
Trigger use-after-free on freed object
Execution
Groom heap and hijack control flow
Impact
Execute arbitrary code in renderer sandbox

Vulnerability AssessmentAI

Exploitation Exploitation requires the victim to actively open or navigate to attacker-controlled HTML in a vulnerable Chrome build (UI:R), and the crafted page must exercise the IndexedDB API to reach the use-after-free code path. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 vector (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H = 8.8) indicates a network-reachable, low-complexity, unauthenticated flaw requiring only that the victim visit a page, with high confidentiality/integrity/availability impact but no scope change. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker hosts a malicious web page containing crafted JavaScript that drives IndexedDB operations to trigger the use-after-free, then lures a victim to open it via phishing, a malvertising link, or a compromised site. When the page loads, the dangling reference is exploited to gain arbitrary code execution inside the victim's sandboxed Chrome renderer, positioning the attacker to pair it with a separate sandbox-escape bug for full compromise. …
Remediation Vendor-released patch: update Google Chrome to 150.0.7871.115 or later on all desktop platforms; most installations receive this automatically, so verify the update applied via chrome://settings/help and relaunch the browser to complete it, since the running process retains the vulnerable code until restart. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Audit Chrome versions deployed across endpoints and confirm all systems running versions below 150.0.7871.115; issue critical update notification to all users. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-15107 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy