HIGH 8.8

CVE-2026-11147: Chrome WebML Use-After-Free RCE on Windows

A use-after-free vulnerability exists in Chrome's WebML (Web Machine Learning) component on Windows. An attacker can craft a malicious HTML page that, when visited by a user, triggers code execution within Chrome's sandbox. Although the sandbox contains the damage, the vulnerability allows an attacker to breach browser process isolation and execute arbitrary code with the privileges of the Chrome renderer process.

Source data · NVD / CISA · public domain

CVSS
3.1 · 8.8 HIGH · CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Weaknesses (CWE)
CWE-416
Affected products
2 configuration(s)
Published / Modified
2026-06-04 / 2026-06-17

NVD description (verbatim)

Use after free in WebML in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)

2 reference(s) · View on NVD →

SEC.co analysis · AI-assisted, reviewed against source

Technical summary

CVE-2026-11147 is a use-after-free memory safety flaw (CWE-416) in the WebML implementation within Google Chrome for Windows versions prior to 149.0.7827.53. The vulnerability arises when WebML fails to properly manage object lifetime, allowing memory to be freed and then accessed again during subsequent operations. A remote attacker can exploit this by hosting a specially crafted HTML page that triggers the use-after-free condition. Successful exploitation results in arbitrary code execution within the Chrome renderer sandbox. The attack requires user interaction (visiting the malicious page) but no special privileges or local access.

Business impact

Organizations where employees use Chrome on Windows face exposure to malware injection and data theft. Attackers can use this vulnerability to steal sensitive data from browser memory, inject malicious scripts into legitimate sites, or establish persistence for follow-on attacks. If exploited at scale via drive-by downloads or watering-hole attacks, this could compromise large user populations. Financial services, healthcare, and government sectors face particular risk due to the sensitivity of data typically accessed through browsers.

Affected systems

Google Chrome running on Windows versions prior to 149.0.7827.53 is vulnerable. Both consumer and enterprise deployments are affected. Linux and macOS Chrome installations are unaffected, as the vulnerability is specific to the Windows platform. The vulnerability affects all Chrome users until they update to version 149.0.7827.53 or later.

Exploitability

The attack surface is broad because it requires only that a user visit a malicious webpage—no social engineering beyond typical phishing tactics is necessary. The CVSS score of 8.8 reflects the combination of network accessibility, low attack complexity, and high impact (confidentiality, integrity, and availability). However, the vulnerability has not been added to CISA's Known Exploited Vulnerabilities (KEV) catalog, indicating that as of the publication date, active exploitation in the wild has not been confirmed. The sandbox containment partially mitigates impact, but escape is possible under certain conditions.

Remediation

Update Google Chrome to version 149.0.7827.53 or later on all Windows systems. Chrome's auto-update mechanism will typically deliver this patch automatically, but administrators should verify deployment completion. For enterprise environments, use Chrome policies to enforce minimum version requirements and disable user downgrades. Users on devices where auto-update is disabled must manually trigger the update.

Patch guidance

Verify that Chrome has updated to 149.0.7827.53 or later by checking Help > About Google Chrome, which will display the current version and update status. In managed environments, confirm via endpoint management tools (MDM/MDC) that all Chrome instances report version 149.0.7827.53 or higher. If auto-update is disabled, manually download and install the latest Chrome release from google.com/chrome. Test the patch on a non-critical system first to rule out compatibility issues with extensions or internal web applications.

Detection guidance

Monitor Windows event logs for Chrome renderer process crashes or abnormal termination, which may indicate exploitation attempts. Track Chrome version inventory across your fleet; any system running version 149.0.7827.0 through 149.0.7827.52 should be prioritized for patching. Network-level detection is limited because the attack occurs entirely within the browser; however, monitor outbound connections from Chrome processes to suspicious domains that may be hosting exploit pages. Endpoint detection and response (EDR) tools may flag unusual Chrome memory access patterns or child process creation.

Why prioritize this

Although Chromium assigned this a Medium severity rating, the CVSS score of 8.8 (HIGH) reflects realistic risk: network exploitability, low attack complexity, and impact across confidentiality, integrity, and availability. The lack of KEV listing suggests active exploitation is not yet widespread, providing a window to patch before threat actors weaponize this flaw. Prioritize patching for users in high-risk roles (finance, legal, research) and public-facing web applications that handle sensitive data. Standard deployment over the next 30 days is appropriate for the broader user base.

Risk score, explained

The CVSS 3.1 score of 8.8 (HIGH) is driven by: (1) Network Attack Vector—no local access required, (2) Low Attack Complexity—the vulnerability does not require special conditions or user knowledge beyond visiting a page, (3) No Privileges Required—the attacker needs no prior account or permissions, (4) User Interaction Required—reduces from Critical, as a user must visit the malicious page, (5) Sandbox Scope Unchanged—the vulnerability does not escape the sandbox by default, limiting the attack scope, yet (6) High Impact across all three security properties—arbitrary code execution in the renderer process can leak data, modify content, and disrupt service. The score appropriately reflects elevated risk within a partially contained environment.

Frequently asked questions

Does this vulnerability require the user to download a file or run an executable?

No. Simply visiting a crafted webpage is sufficient. The vulnerability is triggered by rendering malicious HTML, making it easier for attackers to deliver via phishing, ads, or compromised legitimate sites.

Is the Chrome sandbox effective against this vulnerability?

The sandbox provides a layer of containment, limiting the attacker's ability to access the full system. However, the vulnerability allows code execution within the renderer process, which can access sensitive browser data (cookies, cached credentials, local storage). Further sandbox escapes are theoretically possible but would require a separate vulnerability.

Will Chrome auto-update protect me automatically?

If auto-update is enabled (the default on most systems), Chrome will download and apply version 149.0.7827.53 within hours to days. Verify your version in Help > About Google Chrome. If your organization disables auto-update, you must manually trigger patching or enforce it via policy.

Are Chrome users on macOS or Linux affected?

No. This vulnerability is specific to the Windows platform. The WebML implementation differs across operating systems, and the use-after-free condition only manifests on Windows.

This analysis is based on publicly available vulnerability data as of the publication date. CVSS scores and severity ratings reflect baseline risk; actual risk depends on your environment, user base, and exposure. Patch availability, version numbers, and affected product lists are accurate as reported by Google and Microsoft; verify against official vendor advisories before remediation. This document does not constitute legal or compliance advice. Organizations are responsible for assessing their own risk tolerance and patch deployment timelines in accordance with internal policy and regulatory requirements. Source: NVD (public-domain), retrieved 2026-07-12. Analysis generated by SEC.co (claude-haiku-4-5).