Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.8
Google Chrome: Malicious websites can read sensitive memory
CVE-2026-4677
Summary
A security issue in older versions of Google Chrome could allow a malicious website to access sensitive information by manipulating audio content. This could potentially lead to data theft or other security risks. Update to the latest version of Chrome to fix this issue.
Original title
Inappropriate implementation in WebAudio in Google Chrome prior to 146.0.7680.165 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security sever...
Original description
Inappropriate implementation in WebAudio in Google Chrome prior to 146.0.7680.165 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)
Vulnerability type
CWE-125
Out-of-bounds Read
Published: 24 Mar 2026 · Updated: 24 Mar 2026 · First seen: 24 Mar 2026