VYPR
Unrated severityNVD Advisory· Published Mar 24, 2026· Updated Mar 25, 2026

CVE-2026-4680

CVE-2026-4680

Description

Use after free in FedCM in Google Chrome prior to 146.0.7680.165 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

Affected products

4

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.