Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.8
Google Chrome: Malicious Websites Can Crash or Steal Data
CVE-2026-3544
Summary
A security issue in Google Chrome allows hackers to create malicious websites that can potentially crash the browser or steal sensitive information. This affects all versions of Chrome prior to 145.0.7632.159. To stay safe, update your Chrome browser to the latest version as soon as possible.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| chrome | <= 145.0.7632.159 | – | |
| chrome | <= 145.0.7632.160 | – |
Original title
Heap buffer overflow in WebCodecs in Google Chrome prior to 145.0.7632.159 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: H...
Original description
Heap buffer overflow in WebCodecs in Google Chrome prior to 145.0.7632.159 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: High)
nvd CVSS3.1
8.8
Vulnerability type
CWE-122
Heap-based Buffer Overflow
CWE-787
Out-of-bounds Write
- https://chromereleases.googleblog.com/2026/03/stable-channel-update-for-desktop.... Release Notes Vendor Advisory
- https://issues.chromium.org/issues/485683110 Issue Tracking Permissions Required
Published: 4 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026