CVE-2019-5797

HIGH

Chrome < 73.0.3683.75 - Use-After-Free in DOMStorage

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-5797. PoCs published by Google Security Research.

AI-analyzed exploit summary The writeup describes a race condition in Chromium's BindingState destruction for StoragePartitionService, leading to a data race and potential double-free. The issue is triggered by concurrent calls to mojo::BindingSet::GetBadMessageCallback(), with reproduction requiring multiple tabs and ThreadSanitizer for reliability.

Description

Double free in DOMStorage in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Google Security Research · textdosmultiple
https://www.exploit-db.com/exploits/46565

The writeup describes a race condition in Chromium's BindingState destruction for StoragePartitionService, leading to a data race and potential double-free. The issue is triggered by concurrent calls to mojo::BindingSet::GetBadMessageCallback(), with reproduction requiring multiple tabs and ThreadSanitizer for reliability.

Classification
Writeup 90%
Attack Type
Dos
Complexity
Complex
Reliability
Racy
Target: Chromium (specific version not specified)
No auth needed
Prerequisites: ThreadSanitizer build of Chromium · Multiple tabs opened simultaneously
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Issue Tracking, Mailing List, Vendor Advisory x_refsource_misc
https://crbug.com/916523

Scores

CVSS v3 7.5
EPSS 0.0265
EPSS Percentile 83.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-415
Status published
Products (1)
google/chrome < 73.0.3683.75
Published Sep 29, 2022
Tracked Since Feb 18, 2026