Home / Vulnerability Intelligence / CVE-2026-3062

CVE-2026-3062 - Vulnerability Analysis

CriticalCVSS: 9.8

Last Updated: February 25, 2026

Google Chrome - Out of Bounds Read & Write

Published: February 23, 2026Updated: February 25, 2026PoC AvailableRemote Exploitable

Overview

Google Chrome < 145.0.7632.116 contains an out of bounds read and write vulnerability in Tint, letting remote attackers perform out of bounds memory access via crafted HTML pages, exploit requires no special privileges.

Severity & Score

Severity: Critical

CVSS Score: 9.8

Impact

Remote attackers can perform out of bounds memory access, potentially leading to memory corruption or code execution.

Mitigation

Update to version 145.0.7632.116 or later.

References

https://chromereleases.googleblog.com/2026/02/stable-channel-update-for-desktop_23.html
https://issues.chromium.org/issues/483751167

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2026-3062
Severity: Critical
CVSS Score: 9.8
Type: out_of_bounds_rw
Status: confirmed

CWE

CWE-125

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H