Primary

Context

Google Chrome Uninitialized Use Vulnerability in WebCodecs Allowing Information Disclosure

Vulnerability

Patched

A vulnerability in the WebCodecs component of Google Chrome has been identified, which involves uninitialized use. This issue is present in Google Chrome versions prior to 148.0.7778.96. The vulnerability allows remote attackers to access potentially sensitive information from the process memory by exploiting a crafted HTML page.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive information from the process memory.

Remediation

Users can update to Google Chrome version 148.0.7778.96 or later to address this vulnerability.

Added: May 6, 2026, 7:59 PM

Updated: May 6, 2026, 7:59 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

4.4

remediation

7.7

relevance

7.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

4.4

remediation

7.7

relevance

7.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Google Chrome Uninitialized Use Vulnerability in WebCodecs Allowing Information Disclosure

Vulnerability

Impact

Remediation

Affected Products

Google Chrome

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating