Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

CVE-2026-13849

AI Predicted 7.8 Difficulty: Moderate EPSS 0.10% · P1

Possible ATT&CK Techniques 1AI

T1210 · Exploitation of Remote Services

Affected Version Matrix 1

VendorProductVersion RangeStatus
GoogleChrome150.0.7871.47< 150.0.7871.47affected
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-13849

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Insufficient validation of untrusted input in Chromoting in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to potentially perform a sandbox escape via a malicious file. (Chromium security severity: High)
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
输入验证不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
Google Chrome 输入验证错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Google chrome是美国Google公司的一个跨平台Web浏览器。 Google Chrome on Windows 150.0.7871.47之前版本存在输入验证错误漏洞,该漏洞源于对Chromoting中不可信输入的验证不足,可能导致本地攻击者通过恶意文件进行沙箱逃逸。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
GoogleChrome 150.0.7871.47 ~ 150.0.7871.47 -

II. Public POCs for CVE-2026-13849

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2026-13849

登录查看更多情报信息。

Vendor Pages for CVE-2026-13849 (1)

Same Patch Batch · Google · 2026-06-30 · 382 CVEs total

CVE-2026-13905Google Chrome 安全漏洞
CVE-2026-13894Google Chrome 安全漏洞
CVE-2026-13897Google Chrome 权限提升漏洞
CVE-2026-13896Google Chrome 安全漏洞
CVE-2026-13895Google Chrome 安全漏洞
CVE-2026-13900Google Chrome 输入验证错误漏洞
CVE-2026-13899Google Chrome 资源管理错误漏洞
CVE-2026-13898Google Chrome 资源管理错误漏洞
CVE-2026-13901Google Chrome 输入验证错误漏洞
CVE-2026-13902Google Chrome 安全漏洞
CVE-2026-13903Google Chrome 权限提升漏洞
CVE-2026-13904Google Chrome 安全漏洞
CVE-2026-13911Google Chrome 安全漏洞
CVE-2026-13916Google Chrome 安全漏洞
CVE-2026-13915Google Chrome 资源管理错误漏洞
CVE-2026-13914Google Chrome 安全漏洞
CVE-2026-13912Google Chrome 安全漏洞
CVE-2026-13913Google Chrome 安全漏洞
CVE-2026-13908Google Chrome 输入验证错误漏洞
CVE-2026-13906Google Chrome 缓冲区错误漏洞

Showing top 20 of 382 CVEs. View all on vendor page &rarr; →

IV. Related Vulnerabilities

V. Comments for CVE-2026-13849

No comments yet


Leave a comment