top of page
perceptive_background_267k.jpg

Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HT…

Published:

12 maart 2026 om 23:00:00

Alert date:

13 maart 2026 om 20:06:20

Source:

nvd.nist.gov

Click to open the original link from this advisory

Web Technologies

CVE-2026-3910 is a high-severity vulnerability in Google Chrome's V8 JavaScript engine affecting versions prior to 146.0.7680.75. The vulnerability involves an inappropriate implementation that allows remote attackers to execute arbitrary code inside a sandbox via a crafted HTML page. This represents a significant security risk as it enables sandbox escape, potentially allowing attackers to break out of Chrome's security boundaries. The vulnerability has been classified with high severity by the Chromium security team and has been added to CISA's Known Exploited Vulnerabilities catalog, indicating active exploitation in the wild.

Technical details

Mitigation steps:

Affected products:

Google Chrome
V8 JavaScript Engine

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-3910
https://chromereleases.googleblog.com/2026/03/stable-channel-update-for-desktop_12.html
https://issues.chromium.org/issues/491410818
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-3910

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page