CVE-2026-5281

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 146.0.7680.177 (Linux), 146.0.7680.177/146.0.7680.178 (Windows/macOS).

Description: Google Chrome has a high-severity use-after-free vulnerability in the Dawn WebGPU component (CVE-2026-5281). This vulnerability is actively exploited in the wild. Successful exploitation can lead to remote code execution in the renderer process and potentially sandbox escape. The vulnerability affects all Chromium-based browsers prior to the fixed versions. CISA has added this vulnerability to its Known Exploited Vulnerabilities catalog with a remediation deadline of April 15, 2026.

Recommendations: Update Google Chrome to version 146.0.7680.177 (Linux) or 146.0.7680.177/146.0.7680.178 (Windows/macOS). Update other Chromium-based browsers to their respective patched versions.