CVE-2026-2441 - Vulnerability Analysis
HighCVSS: 8.8Last Updated: February 13, 2026
Google Chrome - Use After Free
Overview
Google Chrome < 145.0.7632.75 contains a use after free vulnerability in CSS, letting remote attackers execute arbitrary code inside a sandbox via crafted HTML pages, exploit requires victim to visit malicious page.
Severity & Score
Impact
Remote attackers can execute arbitrary code inside a sandbox, potentially compromising the browser environment.
Mitigation
Update to version 145.0.7632.75 or later.
References
Social Media Activity(2 posts)
– Upcoming eye-level camera glasses for AI-powered visual understanding via Galaxy phones. - **Neo-Luddite attacks on data centers** – U.S. activists destroying AI/data center equipment, causing billion-dollar damages. - **Accenture AI adoption mandate** – Employees penalized for not using AI tools, raising ethical concerns. - **CSS zero-day vulnerability (CVE-2026-2441)** – Chrome exploit via manipulated CSS files. - **Baikonur Launch Pad restoration** – Progress MS-33 ISS [2/14]
View original post
They Hacked the CSS: Inside Chrome’s First Zero-Day of 2026 (CVE-2026–2441) https://infosecwriteups.com/they-hacked-the-css-inside-chromes-first-zero-day-of-2026-cve-2026-2441-d6087cedae2d
View original postGitHub Repositories(8 repos)
- https://github.com/washingtonmaister/CVE-2026-2441
- https://github.com/huseyinstif/CVE-2026-2441-PoC
- https://github.com/b1gchoi/CVE-2026-2441_POC
- https://github.com/D3b0j33t/CVE-2026-2441-PoC
- https://github.com/NetVanguard-cmd/CVE-2026-2441
- https://github.com/theemperorspath/CVE-2026-2441-PoC
- https://github.com/atiilla/CVE-2026-2441_PoC
- https://github.com/fartlover37/CVE-2026-2441-PoC
Related Resources
Details
- CVE ID
- CVE-2026-2441
- Severity
- High
- CVSS Score
- 8.8
- Type
- use_after_free
- Status
- unconfirmed
- EPSS
- 13.6%
- Social Posts
- 2
CWE
- CWE-416
CVSS Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H