Home / Vulnerability Intelligence / CVE-2026-3545

CVE-2026-3545 - Vulnerability Analysis

CriticalCVSS: 9.6

Last Updated: March 5, 2026

Google Chrome - Sandbox Escape

Published: March 4, 2026Updated: March 5, 2026Remote Exploitable

Overview

Google Chrome < 145.0.7632.159 contains a sandbox escape vulnerability caused by insufficient data validation in Navigation, letting remote attackers escape sandbox via crafted HTML page, exploit requires crafted HTML page.

Severity & Score

Severity: Critical

CVSS Score: 9.6

EPSS Score: 9.9%(Probability of exploitation in next 30 days)

Impact

Remote attackers can escape the sandbox, potentially executing code outside browser restrictions.

Mitigation

Update to version 145.0.7632.159 or later.

References

Social Media Activity(1 post)

TheHackerWire

@thehackerwire

Mar 5, 2026

🔴 CVE-2026-3545 - Critical (9.6) Insufficient data validation in Navigation in Google Chrome prior to 145.0.7632.159 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High) 🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-3545/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

View original post

Related Resources

Details

CVE ID: CVE-2026-3545
Severity: Critical
CVSS Score: 9.6
Type: undefined
Status: confirmed
EPSS: 9.9%
Social Posts: 1

CWE

CWE-20

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

EPSS Score

9.9%Probability of exploitation in the next 30 days