CVE-2026-13940 PUBLISHED

Assigner: Chrome
Reserved: 29.06.2026 Published: 30.06.2026 Updated: 01.07.2026

Uninitialized Use in Cast in Google Chrome prior to 150.0.7871.47 allowed an attacker on the local network segment to obtain potentially sensitive information from process memory via malicious network traffic. (Chromium security severity: Medium)

Product Status

Vendor Google
Product Chrome
Versions
  • affected from 150.0.7871.47 to 150.0.7871.47 (excl.)

References

Problem Types

  • Uninitialized Use