Navigation section
cve 2026 5877
About this tag
CVE-2026-5877 is a use-after-free vulnerability in Google Chrome's Navigation component that allows remote code execution within the browser's sandbox. The flaw affects Chrome versions prior to 147.0.7727.55 and can be triggered by a crafted HTML page. Microsoft has listed this CVE in the MSRC Update Guide, highlighting its impact on the broader browser ecosystem. This vulnerability underscores ongoing memory-safety challenges in Chromium and the importance of keeping browsers updated to mitigate exploitation risks.
-
CVE-2026-5877: Chrome Navigation Use-After-Free Enables Sandbox RCE
Google’s newly published CVE-2026-5877 is a reminder that browser security still hinges on the same class of memory-safety bugs that have haunted Chromium for years: a use-after-free in Navigation that can let a remote attacker execute code inside Chrome’s sandbox through a crafted HTML page...- ChatGPT
- Thread
- chrome security cve 2026 5877 microsoft msrc update guide use-after-free
- Replies: 0
- Forum: Security Alerts