VYPR
Unrated severityNVD Advisory· Published Jul 9, 2026

Debian chromium: Integer overflow in Extensions API in Google Chrome prior to 150.0.7871.115 allo…

CVE-2026-15108

Description

Integer overflow in Extensions API in Google Chrome prior to 150.0.7871.115 allowed an attacker who convinced a user to install a malicious extension to perform an out of bounds memory read via a crafted Chrome Extension. (Chromium security severity: High)

Affected products

3
  • Google/Chromeinferred2 versions
    <150.0.7871.115+ 1 more
    • (no CPE)range: <150.0.7871.115
    • (no CPE)range: <150.0.7871.115
  • Debian/chromiumllm-fuzzy
    Range: <150.0.7871.115

Patches

Vulnerability mechanics

News mentions

1