Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
9.6
Debian Linux: Unauthenticated Remote Code Execution
DEBIAN-CVE-2026-8580
Summary
Debian Linux systems are at risk of being hacked by malicious users who can execute unauthorized code on the system. This could allow an attacker to gain full control of the system. To protect your system, update Debian to the latest version as soon as possible.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Ecosystem | Vendor | Product | Affected versions |
|---|---|---|---|
| Debian:11 | debian | chromium | All versions |
| Debian:12 | debian | chromium | All versions |
| Debian:13 | debian | chromium | All versions |
| Debian:14 | debian | chromium | All versions |
Original title
Use after free in Mojo in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)
Original description
Use after free in Mojo in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)
- https://security-tracker.debian.org/tracker/CVE-2026-8580 Vendor Advisory
Published: 14 May 2026 · Updated: 15 May 2026 · First seen: 14 May 2026