Race in Media in Google Chrome on Android prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to corrupt media stream metadata via a crafted HTML page. (Chromium security severity: Low)
An attacker who has previously compromised the renderer process in Google Chrome on Android can exploit a race condition in the Media component handling. Through a crafted HTML page, the attacker triggers parallel operations on media stream metadata in a manner leading to their corruption. The bug results from lack of appropriate synchronization of access to shared resources (CWE-362).
An attacker can cause corruption of media stream metadata, which potentially could result in violation of data integrity and confidentiality as well as destabilization of browser operation. In combination with prior compromise of the renderer process, further attack escalation is possible.
Google Chrome on Android should be updated to version 147.0.7727.55 or newer. The update is available through the official Google Chrome stable channel.
Google Chrome on Android in versions earlier than 147.0.7727.55
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HApple macOS
OSApplewszystkie wersjeGoogle Chrome
APPGoogle< 147.0.7727.55Linux Kernel
OSLinuxwszystkie wersjeMicrosoft Windows
OSMicrosoftwszystkie wersje
Related vulnerabilities
Atak na łańcuch dostaw DAEMON Tools Lite — trojanizacja instalatorów
Type confusion w V8 (Google Chrome) — zdalne uszkodzenie sterty
Apple iOS/iPadOS/macOS — out-of-bounds write przy przetwarzaniu obrazu
Commvault Command Center – nieuwierzytelniony RCE przez path traversal w ZIP
Apple: Obejście Pointer Authentication w iOS, macOS i innych platformach