Alerts
Active Exploitation of Zero-Day Vulnerability in Google Chrome
2 April 2026
Google has released security updates addressing a zero-day vulnerability in its Chrome browser. Users of Chrome browsers are advised to update to the latest version immediately.
Background
Google has released security updates addressing a zero-day vulnerability (CVE-2026-5281) in its Chrome browser.
Impact
Successful exploitation of the use-after-free vulnerability in Google Chrome’s Dawn WebGPU implementation could allow a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML page.
Known Exploitation
This vulnerability is reportedly being exploited in the wild.
Affected Products
This vulnerability affects versions of Google Chrome prior to 146.0.7680.177/178 for Windows and MAC, and 146.0.7680.177 for Linux.
Recommendations
Users of Chrome browsers are advised to update their browser to the latest version. Users are also encouraged to enable automatic updates in their Chrome browser to ensure that their software is updated promptly.
Users of other Chromium-based browsers, such as Microsoft Edge, Brave, Opera, and Vivaldi, are also advised to apply the fixes as soon as they become available.
References
https://chromereleases.googleblog.com/2026/03/stable-channel-update-for-desktop_31.html
https://nvd.nist.gov/vuln/detail/CVE-2026-5281
https://thehackernews.com/2026/04/new-chrome-zero-day-cve-2026-5281-under.html