CVE-2026-10910

Google · Google Chrome

A type confusion vulnerability in the V8 JavaScript engine of Google Chrome could allow an attacker to achieve arbitrary code execution.

Executive summary

A critical type confusion flaw in the V8 JavaScript engine of Google Chrome exposes users to potential remote code execution and system compromise.

Vulnerability

The vulnerability is a type confusion flaw located in the V8 JavaScript engine. An unauthenticated attacker can exploit this by enticing a user to navigate to a malicious website, causing the engine to incorrectly interpret object types, thereby facilitating code execution.

Business impact

The high CVSS score of 8.8 reflects the significant risk posed by this vulnerability, which allows attackers to bypass standard sandbox protections. Successful exploitation can lead to a full breach of the client workstation, resulting in loss of sensitive credentials or unauthorized access to corporate applications.

Remediation

Immediate Action: Update all Google Chrome installations to version 149 or newer as soon as the patch is released.

Proactive Monitoring: Review web proxy and firewall logs for traffic directed toward suspicious or newly registered domains that may be hosting exploit kits.

Compensating Controls: Use browser-based security features such as "Enhanced Safe Browsing" and ensure that endpoint security software is configured to block known malicious script patterns.

Exploitation status

Public Exploit Available: false

Analyst recommendation

V8 engine vulnerabilities are frequent targets for threat actors due to their high success rates in bypassing browser security. It is imperative to prioritize the deployment of the latest security updates to all managed endpoints to mitigate this severe risk.

Deep Dive #4

Am I vulnerable, and what should I do?

Operational write-up published 2026-06-05. Detection rules are starter content — validate before deploying.

Chrome 149 reached the stable channel on June 2, 2026 as the largest single security release in Chrome's history — 429 CVEs patched in one update, with more than 100 classified critical or high severity. CVE-2026-10910 is one of at least three V8 type confusion bugs in that batch (alongside CVE-2026-10935 and CVE-2026-10936), a cluster that signals sustained attention to Chrome's JavaScript engine from both researchers and, eventually, threat actors. For most organizations, this release functions less like a routine patch cycle and more like a fleet-wide mandatory upgrade: any endpoint still running Chrome 148 or earlier is exposed to a broad surface of high-severity renderer vulnerabilities.

Am I vulnerable?

Affected versions

Product	Vulnerable range	Fixed
Google Chrome (Windows, macOS, Linux)	Prior to 149.0.7827.53 (Linux) / 149.0.7827.53–54 (Win/macOS)	149.0.7827.53 / .54
Google Chrome for iOS	All versions prior to 149	Chrome 149 for iOS

Any Chrome installation below version 149.0.7827.53 (Linux) or 149.0.7827.54 (Windows/macOS) is in scope.

Diagnostic commands

All commands are read-only. Run against any managed endpoint to determine whether it requires patching.

Windows (PowerShell): Get-ItemProperty 'HKLM:\SOFTWARE\Google\Chrome\BLBeacon' -Name version | Select-Object version. Vulnerable if value is below 149.0.7827.53.
Windows (PowerShell, file): (Get-Item 'C:\Program Files\Google\Chrome\Application\chrome.exe').VersionInfo.ProductVersion. Vulnerable if below 149.0.7827.53.
Windows (CMD): reg query "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Google Chrome" /v DisplayVersion. Vulnerable if DisplayVersion is below 149.0.7827.53.
Linux: google-chrome --version or google-chrome-stable --version. Vulnerable if output is below 149.0.7827.53.
macOS: /Applications/Google\ Chrome.app/Contents/MacOS/Google\ Chrome --version. Vulnerable if below 149.0.7827.53.
In-browser (any platform): Navigate to chrome://settings/help — Chrome displays the current version and will indicate whether an update is pending.
Enterprise fleet (PowerShell, remote): Invoke-Command -ComputerName (Get-Content .\endpoints.txt) -ScriptBlock { (Get-Item 'C:\Program Files\Google\Chrome\Application\chrome.exe').VersionInfo.ProductVersion } | Where-Object { [version]$_ -lt [version]'149.0.7827.53' }. Returns hostnames running vulnerable versions.
Google Admin Console: Navigate to Devices > Chrome > Apps & extensions > Users & browsers, filter by Chrome version below 149 to enumerate unpatched managed endpoints.

A system is vulnerable if Chrome is installed at any version prior to 149, regardless of operating system. The fix is available for all platforms simultaneously in the 149 stable channel.

Vulnerability

CVE-2026-10910 is a type confusion flaw in V8, Chrome's JavaScript engine, classified under CWE-843 (Access of Resource Using Incompatible Type). Type confusion occurs when the engine allocates or tracks a JavaScript object as one type but subsequently operates on it as a different, incompatible type — allowing an attacker to corrupt internal engine state in a controlled way.

The attack primitive works through specially crafted JavaScript: the engine can be induced to misread the memory layout of an object, causing subsequent operations to interpret that memory as a different type. This gives an attacker a read/write primitive over engine internals, which is the first stage of a renderer process code execution chain. Exploitation requires no authentication, no browser extension, and no plugin — only that the victim navigates to an attacker-controlled page.

V8 type confusion is an established and well-studied bug class. Historically, comparable bugs such as CVE-2021-21224 and CVE-2022-1096 were weaponized within days of public disclosure, demonstrating that the V8 exploit ecosystem is mature enough to reliably operationalize this primitive once a stable trigger is identified. The presence of three separate V8 type confusion CVEs in this single Chrome release (CVE-2026-10910, CVE-2026-10935, CVE-2026-10936) may reflect independent discovery and reporting, or a single root cause with multiple triggerable paths — the latter scenario historically produces higher-quality exploit primitives because multiple trigger paths mean more reliable exploitation across different JavaScript runtime states.

Successful exploitation lands code execution inside the Chrome renderer process sandbox. A full system compromise requires an additional sandbox escape primitive; this CVE alone does not provide one.

Threat model

Who would exploit this: Opportunistic criminal actors are the primary threat — browser engine vulnerabilities with renderer-process code execution enable mass-scale drive-by download campaigns requiring only a single page visit with no other user interaction. Ransomware affiliates and initial access brokers are the most likely first movers once a reliable exploit primitive is developed, given Chrome's market dominance across enterprise endpoints. State-aligned actors may exploit this in narrow, targeted operations, but the absence of a built-in sandbox escape limits its standalone utility for sophisticated persistent access without chaining additional primitives.

What they are after:

Initial foothold via drive-by payload delivery to the renderer process
Credential and session token harvesting from in-memory browser state (cookies, saved passwords, open SaaS sessions)
Initial access brokering — staging a compromised session for sale to downstream operators
First stage of a multi-step chain toward full OS compromise when a sandbox escape is available

Attack chain: An attacker hosts a malicious page containing crafted JavaScript that triggers the V8 type confusion condition, causing Chrome's engine to misinterpret an object's type and execute attacker-controlled code within the renderer process. The victim is directed to this page via phishing email, malvertising, or a compromised legitimate site — no browser plugin or special software is required, only navigating to the URL. Execution lands inside Chrome's renderer sandbox, giving the attacker code execution within that constrained process, which is sufficient to steal in-memory browser data or serve as the first stage of a multi-step chain if a sandbox escape primitive is also available.

Blast radius: In a typical enterprise deployment, successful renderer exploitation reaches browser-accessible data: session cookies, autofill credentials, open SaaS application sessions (email, HR, ERP portals), and any data visible in active browser tabs — all without leaving the renderer sandbox. If an attacker chains a sandbox escape, the blast radius expands to the OS user account, locally stored files, VPN credentials, and network-accessible shares. Unmanaged or unpatched endpoints are the widest exposure surface, particularly where Chrome is used to access internal web applications.

Mitigation

Patch

Update Google Chrome to version 149 on all platforms. This is the only complete remediation.

Product	Action
Google Chrome (Windows/macOS)	Update to 149.0.7827.53 or 149.0.7827.54 via `chrome://settings/help` or managed deployment
Google Chrome (Linux)	Update to 149.0.7827.53 via package manager or `chrome://settings/help`
Google Chrome for iOS	Update via App Store
Enterprise-managed endpoints	Push Chrome 149.0.7827.53+ via Google Admin Console, Intune, or your preferred patch management platform

Chrome auto-updates silently on most consumer installations. For enterprise environments, verify that managed Chrome policies are not suppressing update delivery and confirm version compliance via fleet inventory tools before treating this as closed.

Compensating controls

These controls do not fix the vulnerability but reduce exploitation likelihood and limit blast radius while patch deployment is in progress:

Block malicious redirects at the network layer: Enforce web filtering or DNS-based blocking for newly registered domains and categories known to host exploit kits. Malvertising-delivered exploits frequently use domains registered within days of the campaign launch.
Enforce Chrome's Enhanced Safe Browsing via policy (SafeBrowsingProtectionLevel = 2). This enables real-time URL checks against Google's threat intelligence and provides a meaningful detection layer for known-malicious landing pages.
Browser isolation or RBI (Remote Browser Isolation) for high-risk user segments (executives, finance, IT admins): isolates renderer-level compromise from the endpoint entirely.
Limit saved credentials in Chrome: Encourage use of a dedicated enterprise password manager rather than Chrome's built-in autofill. Renderer-level exploitation can access the in-memory credential store before sandbox escape.
Monitor for renderer child process anomalies: See the Detection section for process-creation signals that indicate a sandbox escape has occurred post-exploitation.

Detection (starter rules — validate before deploying)

These rules are AI-generated starter content. Test against your own telemetry and tune for false positives before deploying to production.

Network and log signals

HTTP/HTTPS GET requests to newly registered or low-reputation domains immediately after a Chrome renderer process loads a page, especially if followed within seconds by a secondary outbound connection from a non-browser process on the same host, which may indicate a post-sandbox-escape C2 beacon.
Chrome renderer process (chrome.exe --type=renderer) initiating direct TCP connections to non-standard ports (not 80/443/8080/8443) — renderers should not open raw sockets; this may indicate that post-exploit code is beaconing directly.
DNS queries for high-entropy (DGA-pattern) hostnames originating from a host immediately after a Chrome tab crash event in Windows Event Log (EventID 1000/1001 for chrome.exe).
Multiple chrome.exe renderer crashes (Windows Error Reporting .wer files written to %LOCALAPPDATA%\Microsoft\Windows\WER\ReportQueue) in a short window — three or more crashes in 10 minutes during active browsing to an external domain is consistent with exploit probe behavior.
Outbound connections from unexpected processes (cmd.exe, powershell.exe, mshta.exe, wscript.exe) sharing the same process-creation timestamp chain as a chrome.exe renderer — indicates successful sandbox escape and lateral tool delivery.
HTTP proxy logs showing Chrome User-Agent strings with version below 149 after the Chrome 149 release date — unpatched clients are at-risk endpoints worth flagging for prioritized remediation outreach.

YARA

rule CVE_2026_10910_starter {
    meta:
        author      = "CVE Brief"
        description = "Starter rule for CVE-2026-10910 — detects JS patterns associated with V8 type confusion heap-spray primitives (ArrayBuffer/DataView manipulation with typed arrays)."
        warning     = "AI-generated — validate in your environment before deploying."
        reference   = "https://cvebrief.com/cve/CVE-2026-10910"
        created     = "2026-06-05"
        tlp         = "WHITE"
    strings:
        // Large typed-array allocation — common V8 heap-spray setup
        $spray1 = "new ArrayBuffer(" ascii wide
        $spray2 = "new Float64Array(" ascii wide
        $spray3 = "new BigInt64Array(" ascii wide
        // DataView getter/setter abuse — addrof/fakeobj primitives
        $dv1    = "DataView" ascii wide
        $dv2    = "getFloat64" ascii wide
        $dv3    = "setFloat64" ascii wide
        // Proxy/WeakMap IC poisoning — used in recent V8 type confusion chains
        $ic1    = "new Proxy(" ascii wide
        $ic2    = "WeakMap" ascii wide
        // Wasm shellcode loader — common post-V8-exploit delivery
        $wasm   = "WebAssembly.instantiate" ascii wide
        // NOP sled marker in JS string literals
        $nop    = "\\u0090\\u0090\\u0090\\u0090" ascii
    condition:
        filesize < 5MB and (
            (2 of ($spray*)) and
            (2 of ($dv*)) and
            (1 of ($ic*, $wasm))
        ) or $nop
}

Sigma

title: Suspicious Child Process Spawned by Chrome Renderer
id: a3f1c847-9e2d-4b58-bc01-7f3d9e2a10c4
status: experimental
description: |
  Detects a shell, scripting engine, or LOLBin spawned as a direct child of a Chrome
  renderer process. Successful exploitation of a Chrome V8 type confusion vulnerability
  (such as CVE-2026-10910) that also achieves sandbox escape may manifest as the renderer
  spawning a shell or system utility. AI-generated starter rule — validate before deploying.
references:
  - https://cvebrief.com/cve/CVE-2026-10910
author: CVE Brief (AI-generated starter)
date: 2026/06/05
tags:
  - attack.execution
  - attack.t1059
  - attack.initial_access
  - attack.t1189
logsource:
  category: process_creation
  product: windows
detection:
  selection_parent:
    ParentImage|endswith: '\chrome.exe'
    ParentCommandLine|contains: '--type=renderer'
  selection_child:
    Image|endswith:
      - '\cmd.exe'
      - '\powershell.exe'
      - '\pwsh.exe'
      - '\wscript.exe'
      - '\cscript.exe'
      - '\mshta.exe'
      - '\rundll32.exe'
      - '\regsvr32.exe'
      - '\certutil.exe'
      - '\bitsadmin.exe'
      - '\msiexec.exe'
      - '\wmic.exe'
      - '\net.exe'
      - '\whoami.exe'
      - '\systeminfo.exe'
  condition: selection_parent and selection_child
falsepositives:
  - Legitimate browser extensions or enterprise automation that spawn helper processes
    through the renderer (rare in production environments).
  - Security testing and red team exercises against browser targets.
  - Some print-dialog or PDF integrations may briefly spawn msiexec.exe or rundll32.exe.
level: high

Rule notes

The Sigma rule targets post-sandbox-escape behavior (renderer spawning a shell or LOLBin) rather than in-browser exploitation — it is broadly applicable to V8-class browser RCE chains, not specific to CVE-2026-10910. The ParentCommandLine|contains: '--type=renderer' filter is the key specificity gate; without it the rule would fire on any Chrome-spawned child. The YARA rule heuristically matches JavaScript heap-spray and pointer-primitive patterns common to V8 type confusion exploit chains; because no public PoC exists for CVE-2026-10910 as of 2026-06-05, string selection is generalized from prior V8 exploit chains and carries meaningful false-positive risk against minified JavaScript that uses WebGL, WebAssembly, or DataView heavily.