Use after free in Input in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
Metrics
Affected Vendors & Products
References
History
Fri, 10 Jul 2026 14:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Chrome Input Use‑After‑Free Flaw Enables Remote Code Execution |
Fri, 10 Jul 2026 05:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Remote Code Execution via Use‑After‑Free in Chrome Input Component |
Thu, 09 Jul 2026 11:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
cvssV3_1
|
Thu, 09 Jul 2026 04:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Remote Code Execution via Use‑After‑Free in Chrome Input Component |
Thu, 09 Jul 2026 01:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Google
Google chrome |
|
| Vendors & Products |
Google
Google chrome |
Wed, 08 Jul 2026 23:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Use after free in Input in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) | |
| Weaknesses | CWE-416 | |
| References |
|
Status: PUBLISHED
Assigner: Chrome
Published: 2026-07-08T22:36:02.238Z
Updated: 2026-07-10T03:55:41.438Z
Reserved: 2026-07-08T17:07:41.473Z
Link: CVE-2026-15118
Updated: 2026-07-09T10:17:14.433Z
No data.
No data.