Use after free in Fullscreen in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)
| Vendor | Product | Versions |
|---|---|---|
| chrome | 150.0.7871.47 |
Downstream vendors/products affected by this vulnerability
| Vendor | Product | Source | Confidence |
|---|---|---|---|
| chrome | cert_advisory | 90% | |
| android | cve_cpe | 95% |
Updated vendor to Microsoft, added product Edge, and marked exploit as available and actively exploited.
Updated severity to CRITICAL, added affected version 149.0.7827.201, and corrected exploit availability.
Initial creation