Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.8
Google Chrome on Android allows remote attackers to cause unexpected app crashes
CVE-2026-3537
Summary
A security issue in Google Chrome on Android versions before 145.0.7632.159 can be exploited by a hacker to crash the browser or potentially access sensitive information. This issue affects users of Google Chrome on Android devices. To stay safe, update your browser to the latest version.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| chrome | <= 145.0.7632.159 | – |
Original title
Object lifecycle issue in PowerVR in Google Chrome on Android prior to 145.0.7632.159 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security se...
Original description
Object lifecycle issue in PowerVR in Google Chrome on Android prior to 145.0.7632.159 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)
nvd CVSS3.1
8.8
Vulnerability type
CWE-787
Out-of-bounds Write
CWE-1091
- https://chromereleases.googleblog.com/2026/03/stable-channel-update-for-desktop.... Release Notes Vendor Advisory
- https://issues.chromium.org/issues/474266014 Issue Tracking Permissions Required
Published: 4 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026