CVE-2026-9117

Published: Mag 20, 2026 Last Modified: Mag 20, 2026

ExploitDB:

Other exploit source:

Google Dorks:

HIGH 7,5

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

Attack Vector: network

Attack Complexity: high

Privileges Required: none

User Interaction: required

Scope: unchanged

Confidentiality: high

Integrity: high

Availability: high

Description

AI Translation Available

Type Confusion in GFX in Google Chrome on Linux, ChromeOS prior to 148.0.7778.179 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted video file. (Chromium security severity: High)

843

Access of Resource Using Incompatible Type ('Type Confusion')

Incomplete

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Availability Integrity Confidentiality

Potential Impacts:

Read Memory Modify Memory Execute Unauthorized Code Or Commands Dos: Crash, Exit, Or Restart

Applicable Platforms

Languages: C, C++

View CWE Details

https://chromereleases.googleblog.com/2026/05/stable-channe…

https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop…

https://issues.chromium.org/issues/497542537

CVE-2026-9117

Description

Access of Resource Using Incompatible Type ('Type Confusion')

Common Consequences

Applicable Platforms

Iscriviti alla newsletter