Use After Free Vulnerability in Google Chrome for Android
CVE-2026-13032

9.6CRITICAL

Key Information:

Vendor

Google

Status
Vendor
CVE Published:
24 June 2026

What is CVE-2026-13032?

A use after free vulnerability was identified in the WebGL component of Google Chrome on Android, affecting versions prior to 149.0.7827.197. This flaw could allow a remote attacker to potentially execute a sandbox escape through a specially crafted HTML page, posing significant risks to user security. Users are strongly advised to update to the latest version of Google Chrome to mitigate this vulnerability.

Affected Version(s)

Chrome 149.0.7827.197

References

CVSS V3.1

Score:
9.6
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.