Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.
9.8

CVE-2026-13775: Google Chrome Sandbox Escape via Malicious HTML Page

CVE-2026-13775
Summary

A security flaw in older versions of Google Chrome could allow an attacker to break out of the browser's security sandbox, potentially stealing sensitive information or taking control of your computer. This issue has been fixed in version 150.0.7871.47, so update your browser to the latest version to stay protected.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software
VendorProductAffected versions
google chrome < 150.0.7871.47
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
Original title
Use after free in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Ch...
Original description
Use after free in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
nvd CVSS3.1 9.8
Vulnerability type
CWE-416 Use After Free
Published: 30 Jun 2026 · Updated: 1 Jul 2026 · First seen: 1 Jul 2026