Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.8
Google Chrome: Remote attackers can read sensitive data from your computer
CVE-2026-3915
Summary
Google Chrome's WebML component has a bug that allows hackers to access sensitive information from your computer if you visit a malicious website. This is a serious issue that could lead to data theft or other security breaches. You should update Google Chrome to the latest version as soon as possible to fix this issue.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| chrome | <= 146.0.7680.71 | – |
Original title
Heap buffer overflow in WebML in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)
Original description
Heap buffer overflow in WebML in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)
Vulnerability type
CWE-122
Heap-based Buffer Overflow
Published: 11 Mar 2026 · Updated: 14 Mar 2026 · First seen: 11 Mar 2026