""Use-after-free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML page.""
""Google is aware that an exploit for CVE-2026-5281 exists in the wild.""
""For optimal protection, users are advised to update their Chrome browser to versions 146.0.7680.177/178 for Windows and Apple macOS, and 146.0.7680.177 for Linux.""
Google released security updates for Chrome to fix 21 vulnerabilities, including a high-severity zero-day flaw, CVE-2026-5281. This flaw involves a use-after-free bug in Dawn, allowing remote attackers to execute arbitrary code via a crafted HTML page. Google did not disclose further details about the exploitation to protect users. This update follows previous fixes for two other high-severity zero-day flaws. Users are advised to update their Chrome browsers to the latest versions for optimal protection, and users of other Chromium-based browsers should also apply available fixes.
Read at The Hacker News
Unable to calculate read time
Collection
[
|
...
]