CVE-2026-7346

· NIST NVD ↗

Inappropriate implementation in Tint in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

HIGH
CVSS severity
8.1
CVSS base score
2026-04-28
Published

CWE codes

CWE-119

Affected products

google:chromeapple:macoslinux:linux_kernelmicrosoft:windows

Sources