GHSA-7qvp-f7h8-6j9jMediumCVSS 5.3

Insufficient validation of untrusted input in Media in Google Chrome on ChromeOS prior to 148.0...

Published
May 29, 2026
Last Modified
May 29, 2026

🔗 CVE IDs covered (1)

CVE-2026-9985

📋 Description

Insufficient validation of untrusted input in Media in Google Chrome on ChromeOS prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)

🔗 References (4)