Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.8
Google Chrome: Heap Corruption in Media Component
CVE-2026-2650
Summary
A security issue in Google Chrome's media component could allow a website to potentially cause the browser to crash or behave unexpectedly. This affects Chrome versions prior to 145.0.7632.109. Update to the latest version of Chrome to fix this issue.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| chrome | <= 145.0.7632.109 | – |
Original title
Heap buffer overflow in Media in Google Chrome prior to 145.0.7632.109 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)
Original description
Heap buffer overflow in Media in Google Chrome prior to 145.0.7632.109 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)
nvd CVSS3.1
8.8
Vulnerability type
CWE-122
Heap-based Buffer Overflow
- https://chromereleases.googleblog.com/2026/02/stable-channel-update-for-desktop_... Release Notes
- https://issues.chromium.org/issues/476461867 Issue Tracking Permissions Required
Published: 18 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026