Google Chrome Allows Malicious HTML to Access Data

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

Google Chrome Allows Malicious HTML to Access Data

CVE-2026-5274

Summary

A security issue in Google Chrome's video and audio handling code allows a hacker to access and modify sensitive data on a user's computer by tricking them into visiting a malicious website. This is a serious issue that could lead to data theft or corruption. Update your Google Chrome browser to the latest version to protect yourself.

Original title

Integer overflow in Codecs in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High)

Original description

Integer overflow in Codecs in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High)

Vulnerability type

CWE-472

Published: 1 Apr 2026 · Updated: 1 Apr 2026 · First seen: 1 Apr 2026