Vulnerability Brief

CVE-2026-13282

• Severity: MEDIUM
• CVSS score: 6.8

Technical summary

Use after free in Payments in Google Chrome on Android prior to 149.0.7827.201 allowed a local attacker to potentially exploit heap corruption via physical access to the device. (Chromium security severity: High)