CVE-2026-7357 | Echo CVE Advisory

Vulnerability Database>CVE-2026-7357

A use-after-free vulnerability exists in the GPU component of Google Chrome versions prior to 147.0.7727.138. This flaw allows a remote attacker who has compromised the renderer process to potentially exploit heap corruption by means of a specially crafted HTML page. The severity of this issue, as classified by Chromium security, is High.

‍

Publish date: May 1, 2026

Severity

High

CVSS score

7.5

Package

chromium

Affected versions

>= 147.0.7727.101-1~deb13u1, < 147.0.7727.137-1~deb12u1

HDF5 1.14.6's H5MM_strndup is vulnerable to heap-based buffer overflow.

Learn about Echo's vulnerability management

Learn more

NVD Record:

References:

Related CVEs: