CVE-2026-9973

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.216

Description An out-of-bounds write exists in the V8 JavaScript engine, which is the component responsible for compiling and executing JavaScript code. This issue stems from a JIT (Just-In-Time) loop optimization bug, where the engine optimizes code during execution to improve performance. A remote attacker can exploit this by using a crafted HTML page to execute arbitrary code within a sandbox.

Recommendations Update to version 148.0.7778.216 or later.