Google Chrome disclosed two high-severity use-after-free vulnerabilities, CVE-2026-6316 in the Forms component and CVE-2026-6360 in the FileSystem component. Both flaws affect Chrome versions prior to 147.0.7727.101 and can be triggered by a remote attacker using a crafted HTML page. In the Forms bug, successful exploitation could lead to arbitrary code execution inside the browser sandbox, while the FileSystem bug could enable exploitation through object corruption.
Both issues are classified as CWE-416 and carry a CVSS v3.1 rating of AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H, reflecting high impact to confidentiality, integrity, and availability with no privileges required beyond user interaction. Chromium rated each vulnerability as High severity and published fixes in Chrome 147.0.7727.101, with references pointing to Chrome release notes and Chromium issue tracker entries.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
2 events from the most recent confirmed update back to the earliest known activity.
The CVE entries for CVE-2026-6316 and CVE-2026-6360 were updated with high-severity ratings, CWE-416 classification, and CVSS v3.1 vectors. The records also referenced the Chrome Releases blog and Chromium issue tracker.
Google Chrome versions prior to 147.0.7727.101 were affected by two high-severity use-after-free vulnerabilities: CVE-2026-6316 in Forms and CVE-2026-6360 in FileSystem. The issues could be triggered via crafted HTML pages, with potential for arbitrary code execution in the browser sandbox or object corruption.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
2 references tracked. Mallory keeps watching after this page renders.
Map indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.