Google Chrome: Malicious HTML can run unauthorized code

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

Google Chrome: Malicious HTML can run unauthorized code

CVE-2026-5286

Summary

A security flaw in older versions of Google Chrome allows a hacker to execute unauthorized code on your computer. This could lead to data theft or damage to your system. Update your Chrome browser to the latest version to fix this issue.

Original title

Use after free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)

Original description

Use after free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)

Vulnerability type

CWE-416 Use After Free

https://chromereleases.googleblog.com/2026/03/stable-channel-update-for-desktop_...
https://issues.chromium.org/issues/493900619

Published: 1 Apr 2026 · Updated: 1 Apr 2026 · First seen: 1 Apr 2026