-
CVE-2026-12445
- EPSS 0.16%
- Veröffentlicht 17.06.2026 01:38:13
- Zuletzt bearbeitet 17.06.2026 01:38:13
- Quelle ebfee0ef-53dd-4cf3-9e2a-08a5bd
- CVE-Watchlists
- Unerledigt
Use after free in Extensions in Google Chrome prior to 149.0.7827.155 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: High)
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerGoogle
≫
Produkt
Chrome
Version
149.0.7827.155
Version <
149.0.7827.155
Status
affected
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.16% | 0.053 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|
https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_01750511403.html
https://issues.chromium.org/issues/513199795