CVE-2026-12465

An insufficient validation of untrusted input flaw was found in the Metrics component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=520189702...

The vulnerability of the Metrics component in Google Chrome and Microsoft Edge allows a hacker to execute arbitrary code.

The vulnerability of the Metrics component in Google Chrome and Microsoft Edge relates to reading data beyond the permitted range in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code using a specially created HTML page...

The vulnerability of the Metrics component in the Google Chrome browser allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Metrics component in Google Chrome browser relates to the issue of operations going beyond the buffer in memory when processing HTML content. Exploiting this vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

Google Chrome 缓冲区错误漏洞

Google Chrome is a web browser from Google Inc. in the United States. A security vulnerability exists in Google Chrome version 111.0.5563.64, which stems from a heap buffer overflow issue in the Metrics component. Allows remote attackers who corrupt the renderer process to potentially exploit hea...