CVE-2026-7349

· NIST NVD ↗

Use after free in Cast in Google Chrome prior to 147.0.7727.138 allowed an attacker on the local network segment to execute arbitrary code inside a sandbox via malicious network traffic. (Chromium security severity: High)

HIGH
CVSS severity
7.5
CVSS base score
2026-04-28
Published

CWE codes

CWE-416

Affected products

google:chromeapple:macoslinux:linux_kernelmicrosoft:windows

Sources