CVE-2026-13803
HIGHDescription
Type Confusion in Chrome Tabs in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVSS v3.1 Score
EPSS — Exploit Prediction
EPSS estimates the probability that this vulnerability will be exploited in the wild within the next 30 days. A higher score means more likely to be exploited.
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| chrome |
References
Advisories & Patches
Other References
Frequently Asked Questions
What is CVE-2026-13803? +
How severe is CVE-2026-13803? +
What products are affected by CVE-2026-13803? +
How do I check if I'm vulnerable to CVE-2026-13803? +
Related Vulnerabilities
LibreOffice Calc can import tracked changes from a spreadsheet document. A heap buffer overflow existed when a document reused the …
A type confusion vulnerability in Qt SVG allows an attacker to cause an application crash via a crafted SVG image. …
LibreOffice can import documents in the OOXML format (DOCX). A heap buffer overflow existed when replaying deferred parser events for …
Type confusion in Snapchat LensCore could lead to denial of service or arbitrary code execution prior to version 12.88. We …
In venc, there is a possible out of bounds write due to type confusion. This could lead to local escalation …
In avdt_msg_ind of avdt_msg.cc, there is a possible memory corruption due to type confusion. This could lead to paired device …