Skip to main content

Google Chrome CVE-2026-15120

| EUVDEUVD-2026-42449 HIGH
Use After Free (CWE-416)
2026-07-08 chrome-cve-admin@google.com GHSA-m4r4-q82r-9vfm
8.3
CVSS 3.1 · Vendor: google
Share

Severity by source

Vendor (google) PRIMARY
8.3 HIGH
AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
vuln.today AI
8.3 HIGH

AC:H and UI:R reflect the need for a crafted page plus a pre-compromised renderer; S:C captures the renderer-to-browser sandbox escape with full CIA impact, matching the vendor rating.

3.1 AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
4.0 AV:N/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Primary rating from Vendor (google).

CVSS VectorVendor: google

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
Required
Scope
Changed
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

4
Analysis Generated
Jul 09, 2026 - 11:46 vuln.today
CVSS changed
Jul 09, 2026 - 11:22 NVD
8.3 (HIGH)
CVE Published
Jul 08, 2026 - 23:16 cve.org
UNKNOWN (no severity yet)
CVE Published
Jul 08, 2026 - 23:16 cve.org
HIGH 8.3

DescriptionCVE.org

Use after free in Core in Google Chrome on Windows prior to 150.0.7871.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

AnalysisAI

Sandbox escape in Google Chrome's Core component on Windows (versions prior to 150.0.7871.115) lets an attacker who has already compromised the renderer process break out of the sandbox and reach the higher-privileged browser process via a crafted HTML page. The flaw is a CWE-416 use-after-free rated High by Chromium and CVSS 8.3, with a scope change reflecting the renderer-to-browser boundary crossing. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Compromise Chrome renderer process
Delivery
Serve crafted HTML page to victim
Exploit
Trigger use-after-free in Core
Execution
Corrupt freed heap object
Persist
Escape sandbox to browser process
Impact
Execute code at higher privilege

Vulnerability AssessmentAI

Exploitation Exploitation requires two concrete prerequisites drawn from the description: (1) the attacker must have ALREADY compromised the Chrome renderer process - this bug is a sandbox-escape primitive, not an initial entry point - and (2) the victim must load a crafted HTML page (UI:R), which triggers the use-after-free in the Core component. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The signals point to a real but chained risk rather than a drive-by one-click threat. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker first compromises Chrome's renderer using a separate bug, then serves a crafted HTML page that triggers the use-after-free in Core to corrupt memory and escape the sandbox, gaining code execution in the more privileged browser process on the victim's Windows host. Because the user must load the malicious page (UI:R) and the attacker must already control the renderer, this is realistically the sandbox-escape link of a multi-stage chain. …
Remediation Vendor-released patch: 150.0.7871.115 - update Google Chrome on Windows to 150.0.7871.115 or later via the Chrome Stable channel and relaunch the browser to apply the fix, as described in the vendor advisory at https://chromereleases.googleblog.com/2026/07/stable-channel-update-for-desktop_01162222768.html. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Identify Chrome version distribution across Windows fleet and notify stakeholders of patch urgency. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-15120 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy