Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.8
Google Chrome: Malicious web pages can crash browser, leak memory
CVE-2026-3920
Summary
A security issue in older versions of Google Chrome could allow a hacker to create a web page that crashes the browser and potentially steals sensitive information. This issue is fixed in version 146.0.7680.71 and later. Update your Chrome browser to the latest version to protect your system.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| chrome | <= 146.0.7680.71 | – |
Original title
Out of bounds memory access in WebML in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: H...
Original description
Out of bounds memory access in WebML in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Vulnerability type
CWE-125
Out-of-bounds Read
CWE-787
Out-of-bounds Write
Published: 11 Mar 2026 · Updated: 14 Mar 2026 · First seen: 11 Mar 2026