Google Chrome Chrome vulnerabilities

CVE-2026-5900 [LOW] Stable Channel Update for Desktop: CVE-2026-5900 Stable Channel Update for Desktop CVE-2026-5900: Policy bypass in Downloads. Reported by Luan Herrera (@lbherrera_) on 2026-01-13 [TBD][ 479673903 ] Low CVE-2026-5901: Policy bypass in DevTools Reported by Povcfe of Tencent Security Xuanwu Lab on 2026-01-29 [TBD][ 483109205 ] Low CVE-2026-5902: Race in Media Severity: low

CVE-2026-5906 [LOW] Stable Channel Update for Desktop: CVE-2026-5906 Stable Channel Update for Desktop CVE-2026-5906: Incorrect security UI in Omnibox. Reported by mohamedhesham9173 on 2026-02-13 [TBD][ 484665123 ] Low CVE-2026-5907: Insufficient data validation in Media Reported by Luke Francis on 2026-02-15 [TBD][ 485115554 ] Low CVE-2026-5908: Integer overflow in Media Severity: low

CVE-2026-5897 [LOW] Stable Channel Update for Desktop: CVE-2026-5897 Stable Channel Update for Desktop CVE-2026-5897: Incorrect security UI in Downloads. Reported by Farras Givari on 2025-05-24 [TBD][ 470295118 ] Low CVE-2026-5898: Incorrect security UI in Omnibox Reported by saidinahikam032 on 2025-12-19 [TBD][ 474817168 ] Low CVE-2026-5899: Incorrect security UI in History Navigation Severity: low

CVE-2026-5894 [LOW] Stable Channel Update for Desktop: CVE-2026-5894 Stable Channel Update for Desktop CVE-2026-5894: Inappropriate implementation in PDF. Reported by Povcfe of Tencent Security Xuanwu Lab on 2026-02-05 [TBD][ 374285495 ] Low CVE-2026-5895: Incorrect security UI in Omnibox Reported by Renwa Hiwa @RenwaX23 on 2024-10-18 [TBD][ 40064543 ] Low CVE-2026-5896: Policy bypass in Audio Severity: low

CVE-2026-5281 [HIGH] Stable Channel Update for Desktop: CVE-2026-5281 Stable Channel Update for Desktop CVE-2026-5281: Use after free in Dawn. Reported by 86ac1f1587b71893ed2ad792cd7dde32 on 2026-03-10 [TBD][ 491655161 ] High CVE-2026-5282: Out of bounds read in WebCodecs Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-03-11 [TBD][ 492131521 ] High CVE-2026-5283: Inappropriate implementation in ANGLE Severity: high

CVE-2026-5287 [HIGH] Stable Channel Update for Desktop: CVE-2026-5287 Stable Channel Update for Desktop CVE-2026-5287: Use after free in PDF. Reported by Syn4pse on 2026-03-21 [NA][ 495507390 ] High CVE-2026-5288: Use after free in WebView Reported by Google on 2026-03-23 [NA][ 495931147 ] High CVE-2026-5289: Use after free in Navigation Severity: high

CVE-2026-5278 [HIGH] Stable Channel Update for Desktop: CVE-2026-5278 Stable Channel Update for Desktop CVE-2026-5278: Use after free in Web MIDI. Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-03-06 [TBD][ 490642836 ] High CVE-2026-5279: Object corruption in V8 Reported by Hyeonjun Ahn (@_deayzl) on 2026-03-08 [TBD][ 491515787 ] High CVE-2026-5280: Use after free in WebCodecs Severity: high

CVE-2026-5273 [HIGH] Stable Channel Update for Desktop: CVE-2026-5273 Stable Channel Update for Desktop CVE-2026-5273: Use after free in CSS. Reported by Anonymous on 2026-03-18 [TBD][ 491732188 ] High CVE-2026-5272: Heap buffer overflow in GPU Reported by inspector-ambitious on 2026-03-11 [TBD][ 488596746 ] High CVE-2026-5274: Integer overflow in Codecs Severity: high

CVE-2026-5290 [HIGH] Stable Channel Update for Desktop: CVE-2026-5290 Stable Channel Update for Desktop CVE-2026-5290: Use after free in Compositing. Reported by Google on 2026-03-25 [TBD][ 490118036 ] Medium CVE-2026-5291: Inappropriate implementation in WebGL Reported by heapracer (@heapracer) on 2026-03-06 [NA][ 492213293 ] Medium CVE-2026-5292: Out of bounds read in WebCodecs Severity: high

CVE-2026-5275 [HIGH] Stable Channel Update for Desktop: CVE-2026-5275 Stable Channel Update for Desktop CVE-2026-5275: Heap buffer overflow in ANGLE. Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-03-04 [TBD][ 489711638 ] High CVE-2026-5276: Insufficient policy enforcement in WebUSB Reported by Ariel Simon on 2026-03-04 [TBD][ 489791424 ] High CVE-2026-5277: Integer overflow in ANGLE Severity: high

CVE-2026-5284 [HIGH] Stable Channel Update for Desktop: CVE-2026-5284 Stable Channel Update for Desktop CVE-2026-5284: Use after free in Dawn. Reported by 86ac1f1587b71893ed2ad792cd7dde32 on 2026-03-12 [TBD][ 492228019 ] High CVE-2026-5285: Use after free in WebGL Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-03-13 [TBD][ 493900619 ] High CVE-2026-5286: Use after free in Dawn Severity: high

CVE-2026-3916 [CRITICAL] Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2026-3916 Stable Channel Update for ChromeOS / ChromeOS Flex CVE-2026-3916

CVE-2026-3920 [HIGH] Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2026-3920 Stable Channel Update for ChromeOS / ChromeOS Flex CVE-2026-3920

CVE-2026-3921 [HIGH] Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2026-3921 Stable Channel Update for ChromeOS / ChromeOS Flex CVE-2026-3921

CVE-2026-3923 [HIGH] Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2026-3923 Stable Channel Update for ChromeOS / ChromeOS Flex CVE-2026-3923

CVE-2026-3913 [HIGH] Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2026-3913 Stable Channel Update for ChromeOS / ChromeOS Flex CVE-2026-3913

CVE-2026-3914 [HIGH] Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2026-3914 Stable Channel Update for ChromeOS / ChromeOS Flex CVE-2026-3914

CVE-2026-3917 [HIGH] Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2026-3917 Stable Channel Update for ChromeOS / ChromeOS Flex CVE-2026-3917

CVE-2026-3918 [HIGH] Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2026-3918 Stable Channel Update for ChromeOS / ChromeOS Flex CVE-2026-3918

CVE-2026-3931 [HIGH] Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2026-3931 Stable Channel Update for ChromeOS / ChromeOS Flex CVE-2026-3931