You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
autofill use after free
About this tag
The autofill use after free tag covers discussions about CVE-2026-12015, a high-severity Chromium vulnerability disclosed by Google in June 2026. This memory-safety flaw in the Autofill component allows a remote attacker with a compromised renderer process to read sensitive process memory via a crafted HTML page. The bug is fixed in Chrome 149.0.7827.115. Topics include the technical nature of use-after-free vulnerabilities, the importance of patching promptly, and the occasional discrepancies in NVD metadata. The tag is relevant for Windows users running Chrome or Chromium-based browsers who need to understand and mitigate this class of security issue.
Google disclosed CVE-2026-12015 on June 11, 2026, as a high-severity Chromium Autofill use-after-free bug fixed in Chrome 149.0.7827.115, allowing a remote attacker with a compromised renderer process to read potentially sensitive process memory through a crafted HTML page. The vulnerability is...