Vulnerability Database>CVE-2026-7354

CVE-2026-7354

‍

Publish date: May 1, 2026

Severity

Critical

CVSS score

8.8

Package

chromium

Affected versions

>= 147.0.7727.101-1~deb13u1, < 147.0.7727.137-1~deb12u1

An out of bounds read and write vulnerability exists in Angle in Google Chrome versions prior to 147.0.7727.138. This flaw may allow a remote attacker to execute a sandbox escape through a specially crafted HTML page. The security severity level for this issue is classified as High within Chromium.

‍

Learn about Echo's vulnerability management

Learn more

NVD Record:

https://nvd.nist.gov/vuln/detail/CVE-2026-7354

References:

https://chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop_28.html
https://issues.chromium.org/issues/498746519

Related CVEs:

CVE-2026-20884
CVE-2026-2781
CVE-2022-44940