{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-7351", "assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28", "state": "PUBLISHED", "assignerShortName": "Chrome", "dateReserved": "2026-04-28T20:02:43.908Z", "datePublished": "2026-04-28T22:35:59.906Z", "dateUpdated": "2026-04-28T22:35:59.906Z"}, "containers": {"cna": {"affected": [{"vendor": "Google", "product": "Chrome", "versions": [{"version": "147.0.7727.138", "status": "affected", "lessThan": "147.0.7727.138", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "value": "Race in MHTML in Google Chrome prior to 147.0.7727.138 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. (Chromium security severity: High)"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "Race", "cweId": "CWE-362"}]}], "providerMetadata": {"orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28", "shortName": "Chrome", "dateUpdated": "2026-04-28T22:35:59.906Z"}, "references": [{"url": "https://chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop_28.html"}, {"url": "https://issues.chromium.org/issues/499119490"}]}}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Race in MHTML in Google Chrome prior to 147.0.7727.138 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. (Chromium security severity: High)"}], "id": "CVE-2026-7351", "lastModified": "2026-04-28T23:16:22.680", "metrics": {}, "published": "2026-04-28T23:16:22.680", "references": [{"source": "chrome-cve-admin@google.com", "url": "https://chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop_28.html"}, {"source": "chrome-cve-admin@google.com", "url": "https://issues.chromium.org/issues/499119490"}], "sourceIdentifier": "chrome-cve-admin@google.com", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-362"}], "source": "chrome-cve-admin@google.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[147.0.7727.138,147.0.7727.138)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "Chrome", "source": "cna", "vendor": "Google"}, "product": "chrome", "vendor": "google"}], "analysis": {"en": {"generated_at": "2026-04-29T01:08:01.507079+00:00", "value": {"mitigation_remediation": ["Apply Chrome update to version\u202f147.0.7727.138 or later.", "Ensure extensions are installed only from trusted sources and enforce enterprise approval policies.", "Monitor for suspicious extensions and immediately block or remove any that appear malicious."], "summary": {"action": "Patch Now", "impact": "Cross\u2011Origin Data Leakage"}, "threat_synthesis": {"affected_systems": "The flaw exists in Google Chrome for desktop, affecting all versions prior to 147.0.7727.138. Any machine running those versions and with the ability to install third\u2011party extensions is impacted. Upgrading to Chrome 147.0.7727.138 or later resolves the issue.", "description_and_impact": "Race condition in the MHTML processor of Google Chrome allows an attacker who has tricked a user into installing a malicious extension to read cross\u2011origin data. The attacker crafts a malicious Chrome Extension to trigger the race, causing the extension to gain access to data it should not see. This vulnerability is a CWE\u2011362 race condition and results in unauthorized disclosure of sensitive information.", "risk_and_exploitability": "The CVSS severity is High. EPSS is not available, and the vulnerability is not listed in CISA KEV. The exploitation requires the user to install a malicious extension, so it depends on social engineering or deceptive content. However, once installed, the attacker can read cross\u2011origin data from the victim\u2019s browsing context."}}}}, "created": "2026-04-29T01:00:10.588995+00:00", "title": "Race Condition in MHTML Handling Allows Cross\u2011Origin Data Leakage via Malicious Extension", "updated": "2026-04-29T01:15:44.709630+00:00", "vendors": ["google", "google$PRODUCT$chrome"]}