Primary

Context

Google Chrome Heap Buffer Overflow Vulnerability in Skia Allowing Information Disclosure

Vulnerability

Patched

A heap buffer overflow vulnerability has been identified in the Skia graphics library used by Google Chrome. This issue affects Chrome versions prior to 147.0.7727.101. The vulnerability allows remote attackers to exploit the buffer overflow and potentially access sensitive information from the process memory by using a specially crafted HTML page.

Impact

Exploitation of this vulnerability could lead to a heap buffer overflow, a type of memory corruption issue that can be exploited to execute arbitrary code or cause a denial-of-service condition.

Remediation

Users can update to Google Chrome version 147.0.7727.101 or later to address this vulnerability.

Added: Apr 15, 2026, 9:28 PM

Updated: Apr 15, 2026, 9:28 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

4.2

remediation

7.7

relevance

6.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

4.2

remediation

7.7

relevance

6.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Google Chrome Heap Buffer Overflow Vulnerability in Skia Allowing Information Disclosure

Vulnerability

Impact

Remediation

Affected Products

Google Chrome

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating