3 matches found
CVE-2026-9890
Use after free in XR in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...
CVE-2026-9118
CVE-2026-9118 is a Use-After-Free vulnerability affecting Google Chrome on Windows in the XR stack, prior to version 148.0.7778.179. The issue allows remote code execution via a crafted HTML page, with a Chromium-based severity marked as High. The connected documents confirm the vulnerability des...
PT-2026-42238
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.179 Description A use after free issue in XR Extended Reality allows a remote attacker to execute arbitrary code via a crafted HTML page. Recommendations Update to version 148.0.7778.179 or later...