Skip to main content

Google Chrome EUVD-2026-35204

| CVE-2026-11678 MEDIUM
External Control of Assumed-Immutable Web Parameter (CWE-472)
2026-06-09 chrome-cve-admin@google.com GHSA-jmpj-8p4w-j5rq
Information Disclosure Google Red Hat Suse
Medium
Disputed · 5.3 NVD
Share

Severity by source

Sources disagree (Medium–Critical)
NVD PRIMARY
5.3 MEDIUM
AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N
SUSE
CRITICAL
qualitative
Red Hat
5.0 HIGH
qualitative

vuln.today treats the vendor’s rating as authoritative. A higher third-party CVSS (e.g. CISA-ADP) is shown for transparency but does not drive the headline severity.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None

Lifecycle Timeline

4
Analysis Generated
Jun 09, 2026 - 02:59 vuln.today
CVSS changed
Jun 09, 2026 - 02:22 NVD
5.3 (MEDIUM)
CVE Published
Jun 09, 2026 - 00:16 nvd
UNKNOWN (no severity yet)
CVE Published
Jun 09, 2026 - 00:16 nvd
MEDIUM 5.3

DescriptionCVE.org

Integer overflow in libyuv in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)

AnalysisAI

Integer overflow in libyuv allows a renderer-compromised attacker to read sensitive process memory in Google Chrome prior to 149.0.7827.103. This is a chained, post-exploitation vulnerability: the attacker must first control the Chrome renderer process (via a separate exploit), then serve a crafted HTML page that triggers the libyuv integer overflow to extract memory contents - making this a privilege escalation and data exfiltration primitive within a broader attack chain. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Compromise renderer via separate exploit
Delivery
Direct victim to crafted HTML page
Exploit
Trigger libyuv integer overflow during media processing
Execution
Read out-of-bounds process memory
Impact
Exfiltrate sensitive in-memory data
Sign in to reveal

Vulnerability AssessmentAI

Exploitation Exploitation requires two distinct conditions to be satisfied simultaneously. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment Despite the Chromium 'High' severity label, the NVD CVSS score of 5.3 (Medium) reflects significant real-world mitigating factors. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker who has already achieved code execution in a Chrome renderer process (through a separate, unpatched browser vulnerability) crafts a malicious HTML page containing specially constructed image or video data designed to trigger the libyuv integer overflow. When the compromised renderer processes this content, the overflow corrupts a buffer length calculation in libyuv, causing a subsequent read operation to return bytes from adjacent process memory - potentially exposing heap-resident secrets such as authentication tokens, decrypted content, or browser session data. …
Remediation Update Google Chrome to version 149.0.7827.103 or later, which contains the vendor-released patch per the stable channel update advisory at https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0153744567.html. … Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Threat intelligence, references, and detailed analysis are available after sign-in.

Vendor StatusVendor

SUSE

Severity: Critical
Product Status
openSUSE Leap 16.0 Fixed
openSUSE Tumbleweed Fixed

Share

EUVD-2026-35204 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy