Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

CVE-2026-13024

AI Predicted 6.1 Difficulty: Easy EPSS 0.15% · P4

Possible ATT&CK Techniques 1AI

T1055 · Process Injection

Affected Version Matrix 1

VendorProductVersion RangeStatus
GoogleChrome149.0.7827.197< 149.0.7827.197affected
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-13024

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Insufficient validation of untrusted input in Navigation in Google Chrome prior to 149.0.7827.197 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: High)
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
输入验证不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
Google Chrome 输入验证错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Google chrome是美国Google公司的一个跨平台Web浏览器。 Google Chrome 149.0.7827.197之前版本存在输入验证错误漏洞,该漏洞源于未对不可信输入进行充分验证,可能导致已破解渲染进程的远程攻击者通过特制HTML页面绕过站点隔离。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
GoogleChrome 149.0.7827.197 ~ 149.0.7827.197 -

II. Public POCs for CVE-2026-13024

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2026-13024

登录查看更多情报信息。

Patches & Fixes for CVE-2026-13024 (1)

Security Blog Posts for CVE-2026-13024 (1)

Same Patch Batch · Google · 2026-06-24 · 20 CVEs total

CVE-2026-119987.6 HIGHAngularJS XSS via SCE resource URL sanitization bypass
CVE-2026-13025Google Chrome 输入验证错误漏洞
CVE-2026-12681Google Go-Attestation 缓冲区错误漏洞
CVE-2026-13032Google Chrome 资源管理错误漏洞
CVE-2026-13028Google Chrome 资源管理错误漏洞
CVE-2026-13038Google Chrome 资源管理错误漏洞
CVE-2026-13021Google Chrome 输入验证错误漏洞
CVE-2026-13033Google Chrome 缓冲区错误漏洞
CVE-2026-13022Google Chrome 安全漏洞
CVE-2026-13023Google Chrome 异常处理不当漏洞
CVE-2026-13026Google Chrome 资源管理错误漏洞
CVE-2026-13029Google Chrome 资源管理错误漏洞
CVE-2026-13027Google Chrome 资源管理错误漏洞
CVE-2026-13031Google Chrome 资源管理错误漏洞
CVE-2026-13034Google Chrome 输入验证错误漏洞
CVE-2026-13030Google Chrome 异常处理不当漏洞
CVE-2026-13037Google Chrome 资源管理错误漏洞
CVE-2026-13035Google Chrome 资源管理错误漏洞
CVE-2026-13036Google Chrome 资源管理错误漏洞

IV. Related Vulnerabilities

V. Comments for CVE-2026-13024

No comments yet


Leave a comment