LeakyCreds
NewInstant webhook alerts now available — notified within seconds of any credential detection.Learn more →
Home / Vulnerability Intelligence / CVE-2026-7344

CVE-2026-7344 - Vulnerability Analysis

HighCVSS: 8.8

Last Updated: April 29, 2026

Google Chrome - Use After Free

Published: April 28, 2026Updated: April 29, 2026Remote Exploitable

Overview

Google Chrome on Windows < 147.0.7727.138 contains a use after free vulnerability in Accessibility component, letting remote attackers with compromised renderer process potentially escape sandbox via crafted HTML page.

Severity & Score

Severity: High
CVSS Score: 8.8
EPSS Score: 1.1%(Probability of exploitation in next 30 days)

Impact

Remote attackers can escape sandbox, leading to full system compromise.

Mitigation

Update to version 147.0.7727.138 or later.

References

Social Media Activity(2 posts)

OffSequence
OffSequence
@offseq
Apr 29, 2026

CRITICAL: Chrome <147.0.7727.138 on Windows is vulnerable to a use-after-free in Accessibility (CVE-2026-7344). Allows sandbox escape after renderer compromise. Patch now to mitigate risk. https://radar.offseq.com/threat/cve-2026-7344-use-after-free-in-google-chrome-1aabf4b9 #OffSeq #Chrome #Vuln #Cybersecurity

View original post
OffSequence
OffSequence
@offseq
Apr 29, 2026

CRITICAL: Chrome <147.0.7727.138 on Windows is vulnerable to a use-after-free in Accessibility (CVE-2026-7344). Allows sandbox escape after renderer compromise. Patch now to mitigate risk. https://radar.offseq.com/threat/cve-2026-7344-use-after-free-in-google-chrome-1aabf4b9 #OffSeq #Chrome #Vuln #Cybersecurity

View original post

Related Resources

Details

CVE ID
CVE-2026-7344
Severity
High
CVSS Score
8.8
Type
use_after_free
Status
new
EPSS
1.1%
Social Posts
2

CWE

  • CWE-416

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS Score

1.1%Probability of exploitation in the next 30 days