CVE Catalog

CVE-2026-11015

HighCVSS 8.1
Published: Updated: Translated: NVD NIST

Summary

An out of bounds read in WebGPU in Google Chrome prior to version 149.0.7827.53 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.

Risk Assessment

This vulnerability could lead to the disclosure of sensitive information or allow an attacker to perform unauthorized operations on the victim's system.

Recommendation

It is recommended to update Google Chrome to the latest version to mitigate this vulnerability.

Original NVD description (English source)

Out of bounds read in WebGPU in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium)

Vulnerability data from NVD (NIST) · CISA KEV · EPSS