CVE-2026-12443

Use after free in Web Authentication in Google Chrome prior to 149.0.7827.155 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
OR cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

History

18 Jun 2026, 13:46

Type Values Removed Values Added
New CVE

Information

Published : 2026-06-17 13:19

Updated : 2026-06-18 13:46


NVD link : CVE-2026-12443

Mitre link : CVE-2026-12443

CVE.ORG link : CVE-2026-12443


JSON object : View

Products Affected

google

  • chrome

microsoft

  • windows

apple

  • macos

linux

  • linux_kernel
CWE
CWE-416

Use After Free