PT-2026-26511 · Google+1 · Google Chrome+1

C6Eed09Fc8B174B0F3Eebedcceb1E792

Published

2026-01-01

Updated

2026-05-20

CVE-2026-4440

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 146.0.7680.153 Microsoft Edge (affected versions not specified)

Description An out-of-bounds read and write issue exists in the WebGL component, which is a JavaScript API used for rendering 2D and 3D graphics in web browsers. This flaw allows a remote attacker to perform arbitrary read and write operations, potentially leading to remote code execution, by using a specially crafted HTML page.

Recommendations Update versions prior to 146.0.7680.153 to version 146.0.7680.153. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

DoS

Memory Corruption

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-125

Related Identifiers

BDU:2026-03792

CVE-2026-4440

OPENSUSE-SU-2026:10400-1

OPENSUSE-SU-2026:20422-1

Affected Products

Google Chrome

Red Os

PT-2026-26511 · Google+1 · Google Chrome+1

CVE-2026-4440

Weakness Enumeration

Related Identifiers

Affected Products

References · 50