Vulnerability Database>CVE-2026-10977

CVE-2026-10977

‍

Publish date: June 5, 2026

Severity

High

CVSS score

6.5

Package

chromium

Affected versions

>= 147.0.7727.101-1~deb13u1

Uninitialized Use in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page.

Learn about Echo's vulnerability management

Learn more

CVE-2026-10977

NVD Record:

References:

Related CVEs: