External risk intelligence

Chrome on Android vulnerable to attacker gaining control through malicious web pages

CVE advisorySeverity: HIGH (CVSS 8.8)

CVE-2026-6358

A critical flaw in Google Chrome on Android could allow attackers to steal your information by tricking you into visiting a malicious website. Update Chrome immediately.

4Halo Surface Signal

Use After Free

Google Chrome

before 147.0.7727.101

External exposure likelihood

Halo Surface Signal score for CVE-2026-6358

The vulnerability exists in a web browser, which is designed to process external, untrusted content from the public internet. While it requires a user to navigate to a crafted page, web browsers are primary interfaces for internet-facing activity, making this attack surface commonly exposed to remote content in standard deployments.

Horizon Alert

Summary of the vulnerability and why it matters

A flaw in Google Chrome on Android allows an attacker to read sensitive memory by directing a user to a malicious webpage. This could lead to the exposure of private information.

Remote attackers can trigger this flaw.
The issue allows for reading of memory.

Attack Path

How an attacker could exploit the issue

An attacker can exploit this use-after-free vulnerability in Chrome for Android by tricking a user into visiting a malicious webpage. This page would trigger the flaw, potentially allowing the attacker to read sensitive memory contents or even execute arbitrary code, leading to a full device compromise.

Remote attackers can abuse this.
Requires user to visit a crafted page.
Out-of-bounds read for memory access.

Live Threat

Current exploitation, exposure, and threat context

Attackers will likely target this vulnerability due to its presence in a widely used web browser and its critical severity rating, which indicates significant potential impact. The "use after free" vulnerability can allow for memory corruption, potentially leading to code execution or information disclosure when a user visits a malicious website.

Out-of-bounds memory read.
Exploitable via crafted HTML.
Chrome on Android affected.

Priority actions

Operational Fix

Recommended remediation, mitigation, and detection steps

Prioritize patching Google Chrome on Android to version 147.0.7727.101 to mitigate the critical use-after-free vulnerability. This vulnerability allows for out-of-bounds memory reads, which could lead to data compromise or further exploitation.

Update Chrome to 147.0.7727.101.
Monitor for related suspicious network activity.
Block access to untrusted HTML content.

Frequently asked questions

What is Google Chrome on Android and its primary function?

Google Chrome on Android is a mobile web browser. It enables users to access websites, search for information, and use web-based applications on their Android devices.

How does CVE-2026-6358 relate to a use-after-free weakness?

CVE-2026-6358 is a use-after-free vulnerability. This type of flaw occurs when Chrome attempts to access memory that has already been deallocated, potentially leading to memory corruption and security risks.

What is needed for an attacker to exploit CVE-2026-6358?

An attacker needs a user to navigate to a specially crafted HTML page. This action triggers the vulnerability, which could then be exploited.

What is the relevance of CVE-2026-6358 in threat advisories?

This vulnerability allows a remote attacker to perform an out-of-bounds memory read by directing a user to a malicious webpage, potentially exposing sensitive information.

What actions should be taken to address CVE-2026-6358?

Users should update Google Chrome on Android to version 147.0.7727.101. This update addresses the use-after-free vulnerability that allows for out-of-bounds memory reads.

References

Written by Nicholas Merritt

External-surface CVE analysis and Halo Surface Signal prioritization for Halo Threat Intelligence.