Use After Free Vulnerability in WebShare Component of Google Chrome
CVE-2026-12437

Currently unrated

Key Information:

Vendor: Google
Status: Chrome
Vendor: CVE Published:; 17 June 2026

What is CVE-2026-12437?

A use after free vulnerability exists in the WebShare component of Google Chrome that can be exploited by a remote attacker to escape the sandbox through a specially crafted HTML page. This flaw allows an attacker who has compromised the renderer process to execute arbitrary code, potentially leading to significant security risks. It is essential for users to update their Chrome browser to the latest version to mitigate this risk.

Affected Version(s)

Chrome 149.0.7827.155

References

https://chromereleases.googleblog.com/2026/06/stable-chan...

https://issues.chromium.org/issues/516496659

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 17, 2026
Vulnerability Reserved
Jun 16, 2026

CVE-2026-12437 Data

JSON