{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-7338", "assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28", "state": "PUBLISHED", "assignerShortName": "Chrome", "dateReserved": "2026-04-28T20:02:34.920Z", "datePublished": "2026-04-28T22:36:06.870Z", "dateUpdated": "2026-04-28T22:36:06.870Z"}, "containers": {"cna": {"affected": [{"vendor": "Google", "product": "Chrome", "versions": [{"version": "147.0.7727.138", "status": "affected", "lessThan": "147.0.7727.138", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "value": "Use after free in Cast in Google Chrome prior to 147.0.7727.138 allowed an attacker on the local network segment to potentially exploit heap corruption via malicious network traffic. (Chromium security severity: High)"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "Use after free", "cweId": "CWE-416"}]}], "providerMetadata": {"orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28", "shortName": "Chrome", "dateUpdated": "2026-04-28T22:36:06.870Z"}, "references": [{"url": "https://chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop_28.html"}, {"url": "https://issues.chromium.org/issues/502449857"}]}}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Use after free in Cast in Google Chrome prior to 147.0.7727.138 allowed an attacker on the local network segment to potentially exploit heap corruption via malicious network traffic. (Chromium security severity: High)"}], "id": "CVE-2026-7338", "lastModified": "2026-04-28T23:16:21.370", "metrics": {}, "published": "2026-04-28T23:16:21.370", "references": [{"source": "chrome-cve-admin@google.com", "url": "https://chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop_28.html"}, {"source": "chrome-cve-admin@google.com", "url": "https://issues.chromium.org/issues/502449857"}], "sourceIdentifier": "chrome-cve-admin@google.com", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-416"}], "source": "chrome-cve-admin@google.com", "type": "Primary"}]}

{"bugzilla": {"description": "chromium-browser: Use after free in Cast", "id": "2463660", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2463660"}, "csaw": false, "cvss3": {"cvss3_base_score": "8.8", "cvss3_scoring_vector": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "status": "draft"}, "cwe": "CWE-825", "details": ["An use after free flaw was found in the Cast component of the Chromium browser.\nUpstream bug(s):\nhttps://code.google.com/p/chromium/issues/detail?id=502449857"], "name": "CVE-2026-7338", "public_date": "2026-04-28T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2026-7338\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-7338\nhttps://chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop_28.html\nhttps://issues.chromium.org/issues/502449857"], "statement": "Red Hat Product Security rates the severity of this flaw as determined by the Google Chrome Security Advisory.", "threat_severity": "Important"}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,147.0.7727.138)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "Chrome", "source": "cna", "vendor": "Google"}, "product": "chrome", "vendor": "google"}], "analysis": {"en": {"generated_at": "2026-04-29T02:34:24.960900+00:00", "value": {"mitigation_remediation": ["Upgrade Chrome to version 147.0.7727.138 or later to eliminate the use\u2011after\u2011free flaw", "If the upgrade cannot be applied immediately, restrict the device from receiving local network Cast traffic by configuring the firewall to block UDP ports 32768\u201365535 or directing Cast traffic through controlled network paths", "As a temporary measure, disable the Cast feature in Chrome settings or enforce it via group policy to prevent any exploitation while a full update is pending"], "summary": {"action": "Immediate Update", "impact": "Potential local-network remote code execution through heap corruption"}, "threat_synthesis": {"affected_systems": "Google Chrome browsers, versions before 147.0.7727.138, on the stable channel desktop releases are affected.", "description_and_impact": "A use\u2011after\u2011free bug in the Cast component of Google Chrome allows an attacker on the same local network to send crafted Cast traffic that causes heap corruption. This flaw, identified as CWE\u2011416, can be leveraged to achieve arbitrary code execution or denial of service. The severity is marked high by Chromium, highlighting the risk.", "risk_and_exploitability": "Chromium rates this vulnerability as high. No EPSS score is available and it is not listed in CISA KEV. Exploit requires local\u2011network proximity to send malicious Cast traffic, but the lack of publicly known exploits suggests a dependency on the attacker\u2019s network position. Nonetheless, arbitrary code execution remains a serious threat, so patching should be prioritized."}}}}, "created": "2026-04-29T01:00:10.588662+00:00", "title": "Use-After-Free in Cast Leading to Local Network Heap Corruption in Google Chrome", "updated": "2026-04-29T02:45:35.945472+00:00", "vendors": ["google", "google$PRODUCT$chrome"]}