cve 2026 7942

CVE-2026-7942 is a medium-severity integer overflow vulnerability in ANGLE, the graphics translation layer used by Chromium-based browsers. Disclosed by Google on May 6, 2026, it affects Chrome versions before 148.0.7778.96 and allows a remote attacker to leak cross-origin data via a crafted HTML page. While not a remote code execution flaw, it highlights the security risks in browser graphics plumbing where web content, GPU translation, and origin boundaries intersect. For Windows users and enterprise IT administrators, this CVE underscores that Chromium security is integral to the operating environment, whether using Chrome, Edge, Brave, or other Chromium-based browsers. Keeping browsers updated is the primary mitigation.