Google Chrome: Sensitive PDF info exposed via brute-force attack

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

Google Chrome: Sensitive PDF info exposed via brute-force attack

CVE-2026-5889

Summary

A security issue in Google Chrome's PDF viewer allows an attacker to access sensitive information from encrypted PDFs. This is a concern because it could allow unauthorized access to confidential data. Update to the latest version of Google Chrome to fix this issue.

Original title

Cryptographic Flaw in PDFium in Google Chrome prior to 147.0.7727.55 allowed an attacker to read potentially sensitive information from encrypted PDFs via a brute-force attack. (Chromium security s...

Original description

https://chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop....
https://issues.chromium.org/issues/486906037

Published: 8 Apr 2026 · Updated: 10 Apr 2026 · First seen: 8 Apr 2026