Upstream information
Description
Use after free in Cast in Google Chrome prior to 147.0.7727.138 allowed an attacker on the local network segment to potentially exploit heap corruption via malicious network traffic. (Chromium security severity: High)SUSE information
Overall state of this security issue: New
This issue is currently rated as having moderate severity.
| CVSS detail | CNA (CISA-ADP) |
|---|---|
| Base Score | 7.5 |
| Vector | CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
| Attack Vector | Adjacent Network |
| Attack Complexity | High |
| Privileges Required | None |
| User Interaction | None |
| Scope | Unchanged |
| Confidentiality Impact | High |
| Integrity Impact | High |
| Availability Impact | High |
| CVSSv3 Version | 3.1 |
SUSE Timeline for this CVE
CVE page created: Tue Apr 28 23:00:17 2026CVE page last modified: Wed Apr 29 18:50:08 2026