Primary

Context

Google Chrome Skia Out-of-Bounds Memory Write Vulnerability Allowing Memory Corruption

Vulnerability

Patched

A vulnerability in Google Chrome's Skia graphics library, present in versions prior to 148.0.7778.168, allows remote attackers to perform out-of-bounds memory writes. This issue arises from insufficient validation of untrusted input in the renderer process, enabling memory corruption via a crafted print file.

Impact

Exploitation of this vulnerability leads to out-of-bounds memory writes, causing memory corruption. Such memory corruption vulnerabilities can often be exploited to execute arbitrary code or cause a denial-of-service condition by crashing the browser.

Remediation

Users can update to Google Chrome version 148.0.7778.168 or later to address this vulnerability.

Added: May 14, 2026, 8:29 PM

Updated: May 14, 2026, 8:29 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.6

exploitability

2.7

remediation

7.7

relevance

8.3

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.6

exploitability

2.7

remediation

7.7

relevance

8.3

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Google Chrome Skia Out-of-Bounds Memory Write Vulnerability Allowing Memory Corruption

Vulnerability

Impact

Remediation

Affected Products

Google Chrome

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating