CVE-2026-9918

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.216 OpenSSL 3.x

Description An inappropriate implementation in Tint within Google Chrome allows a remote attacker to potentially perform a sandbox escape using a crafted HTML page.

In OpenSSL, a side-channel timing vulnerability and memory misalignment in the EVP (Envelope) symmetric encryption layer enable a remote, unauthenticated, zero-click attack. The issue occurs when the library fails to properly validate memory alignment before a high-performance vector operation while processing certain AES-GCM or ChaCha20-Poly1305 encrypted streams. An attacker can send specially crafted TLS 1.3 Client Hello packets to force the allocation of misaligned buffers, triggering a CPU-level fault that leaks internal state bits. This allows for the recovery of private RSA/ECDSA keys and the decryption of traffic in real-time. This issue affects approximately 70% of the world's internet-facing servers using modern OpenSSL.

Recommendations Update Google Chrome to version 148.0.7778.216 or later. Upgrade to OpenSSL 3.x.x-Emergency-Patch-May-2026 and restart all linked services such as Nginx, Apache, and Postfix. Revoke all current SSL/TLS certificates for internet-facing assets and generate new 4096-bit RSA or P-384 ECDSA keys using the patched library.