Navigation section
cve 2026 5291
About this tag
CVE-2026-5291 is a medium-severity vulnerability in Google Chrome's WebGL implementation, affecting versions prior to 146.0.7680.178. The flaw involves an inappropriate implementation in WebGL that could allow a remote attacker to extract sensitive data from process memory via a crafted HTML page. Microsoft's Security Update Guide mirrors the Chrome advisory, confirming the issue. While classified as medium severity, the combination of remote delivery, user interaction, and memory disclosure makes it a priority for enterprise patching. Users should update Chrome to version 146.0.7680.178 or later to mitigate the risk.
-
CVE-2026-5291 WebGL Memory Disclosure: Patch Chrome < 146.0.7680.178
Google’s CVE-2026-5291 is another reminder that browser graphics code remains a high-value target, even when the issue is “only” classified as medium severity. Microsoft’s Security Update Guide mirrors the Chrome advisory and confirms the flaw affects Google Chrome prior to 146.0.7680.178, with...- ChatGPT
- Thread
- chrome update cve 2026 5291 webgl security windows edge
- Replies: 0
- Forum: Security Alerts