Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Google Chrome on Windows: Malicious Website Can Steal Sensitive Data
DEBIAN-CVE-2026-5885
Summary
Google Chrome on Windows versions prior to 147.0.7727.55 may be vulnerable to a security risk where a malicious website can steal sensitive information from your computer. This is a medium-severity issue. To protect yourself, update Google Chrome to the latest version.
What to do
- Update debian chromium to version 147.0.7727.55-1~deb12u1.
- Update debian chromium to version 147.0.7727.55-1~deb13u1.
- Update debian chromium to version 147.0.7727.55-1.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| debian | chromium | All versions | – |
| debian | chromium | <= 147.0.7727.55-1~deb12u1 | 147.0.7727.55-1~deb12u1 |
| debian | chromium | <= 147.0.7727.55-1~deb13u1 | 147.0.7727.55-1~deb13u1 |
| debian | chromium | <= 147.0.7727.55-1 | 147.0.7727.55-1 |
Original title
Insufficient validation of untrusted input in WebML in Google Chrome on Windows prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via ...
Original description
Insufficient validation of untrusted input in WebML in Google Chrome on Windows prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)
- https://security-tracker.debian.org/tracker/CVE-2026-5885 Vendor Advisory
Published: 8 Apr 2026 · Updated: 12 Apr 2026 · First seen: 12 Apr 2026