Google Chrome: Heap Corruption via Malicious HTML Page

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

8.8

Google Chrome: Heap Corruption via Malicious HTML Page

CVE-2026-2649

Summary

A security issue in Google Chrome could allow an attacker to crash the browser or possibly execute malicious code. This affects users who visit a specially crafted website. To stay safe, keep your Google Chrome browser up to date.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software

Vendor	Product	Affected versions	Fix available
google	chrome	<= 145.0.7632.109	–

Original title

Integer overflow in V8 in Google Chrome prior to 145.0.7632.109 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Original description

Integer overflow in V8 in Google Chrome prior to 145.0.7632.109 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

nvd CVSS3.1 8.8

Vulnerability type

CWE-472

https://chromereleases.googleblog.com/2026/02/stable-channel-update-for-desktop_... Release Notes
https://issues.chromium.org/issues/481074858 Issue Tracking Permissions Required

Published: 18 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026