Use After Free Vulnerability in Payments on Google Chrome for Android
CVE-2026-13282

Currently unrated

Key Information:

Vendor: Google
Status: Chrome
Vendor: CVE Published:; 25 June 2026

What is CVE-2026-13282?

A use after free vulnerability located in the Payments component of Google Chrome for Android prior to version 149.0.7827.201 can be exploited by local attackers. This flaw enables potential heap corruption, particularly when an attacker has physical access to the device. The exploitation of this vulnerability raises serious security concerns, as it could allow malicious individuals to manipulate or compromise sensitive data managed by the application.

Affected Version(s)

Chrome 149.0.7827.201

References

https://chromereleases.googleblog.com/2026/06/stable-chan...

https://issues.chromium.org/issues/517522620

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 25, 2026
Vulnerability Reserved
Jun 24, 2026

CVE-2026-13282 Data

JSON