CVE Catalog

CVE-2026-13827

HighCVSS 7.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.11%

1th percentile — higher than 1% of all known CVEs

Summary

A Use-After-Free vulnerability in the Updater component of Google Chrome on Mac prior to version 150.0.7871.47 allows a local attacker to perform privilege escalation via a malicious file.

Risk Assessment

A local attacker could exploit this vulnerability to gain elevated privileges on the system, potentially leading to full control over the application or system.

Recommendation

It is recommended to immediately update Google Chrome to version 150.0.7871.47 or later on all Mac systems.

Original NVD description (English source)

Use after free in Updater in Google Chrome on Mac prior to 150.0.7871.47 allowed a local attacker to perform privilege escalation via a malicious file. (Chromium security severity: High)

Vulnerability data from NVD (NIST) · CISA KEV · EPSS