Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Google Chrome: Unrestricted Access to Sensitive Data in WebCodecs
CVE-2026-5282
Summary
A security issue in Google Chrome prior to version 146.0.7680.178 could allow an attacker to access sensitive data by manipulating a web page. This could expose confidential information and potentially lead to further attacks. Update to the latest version of Google Chrome to fix this issue.
Original title
Out of bounds read in WebCodecs in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)
Original description
Out of bounds read in WebCodecs in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)
Vulnerability type
CWE-125
Out-of-bounds Read
Published: 1 Apr 2026 · Updated: 1 Apr 2026 · First seen: 1 Apr 2026