Integer overflow in Extensions API in Google Chrome prior to 150.0.7871.115 allowed an attacker who convinced a user to install a malicious extension to perform an out of bounds memory read via a crafted Chrome Extension. (Chromium security severity: High)
Metrics
Affected Vendors & Products
References
History
Mon, 13 Jul 2026 21:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Out‑of‑Bounds Memory Read via Chrome Extension from Integer Overflow |
Sun, 12 Jul 2026 08:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Out‑of‑Bounds Memory Read via Chrome Extension from Integer Overflow |
Fri, 10 Jul 2026 20:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Out‑Bound Memory Read via Extension API Integer Overflow |
Fri, 10 Jul 2026 05:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Out‑Bound Memory Read via Extension API Integer Overflow |
Thu, 09 Jul 2026 11:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
cvssV3_1
|
Thu, 09 Jul 2026 02:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Google
Google chrome |
|
| Vendors & Products |
Google
Google chrome |
Wed, 08 Jul 2026 23:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Integer overflow in Extensions API in Google Chrome prior to 150.0.7871.115 allowed an attacker who convinced a user to install a malicious extension to perform an out of bounds memory read via a crafted Chrome Extension. (Chromium security severity: High) | |
| Weaknesses | CWE-190 | |
| References |
|
Status: PUBLISHED
Assigner: Chrome
Published: 2026-07-08T22:35:59.196Z
Updated: 2026-07-09T10:36:37.839Z
Reserved: 2026-07-08T17:07:38.340Z
Link: CVE-2026-15108
Updated: 2026-07-09T10:36:31.758Z
No data.
No data.