CVE-2026-13879

MEDIUM

Google Chrome - Use After Free

Title source: rule
STIX 2.1

Description

Use after free in Bluetooth in Google Chrome prior to 150.0.7871.47 allowed an attacker on the local network segment to obtain potentially sensitive information from process memory via a malicious peripheral. (Chromium security severity: Medium)

Scores

CVSS v3 6.5
EPSS 0.0016
EPSS Percentile 5.2%
Attack Vector ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-416
Status published
Products (2)
google/chrome < 150.0.7871.46
Google/Chrome 150.0.7871.47
Published Jun 30, 2026
Tracked Since Jul 01, 2026