You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve-2026-7988
About this tag
CVE-2026-7988 is a WebRTC type-confusion vulnerability in Chromium that affects Google Chrome before version 148.0.7778.96 and Microsoft Edge before its corresponding security update. Documented by Google and Microsoft on May 6–7, 2026, this remotely reachable flaw can be triggered by crafted HTML, targeting the component that connects browsers to cameras, microphones, streams, and peers. Although labeled as "Medium" severity in Chromium, the vulnerability poses a significant operational risk because a browser sandbox alone is not sufficient defense. IT teams should prioritize patching Chrome and Edge to the latest versions to mitigate potential exploitation.
Google and Microsoft documented CVE-2026-7988 on May 6–7, 2026, as a WebRTC type-confusion flaw in Chromium that affected Google Chrome before 148.0.7778.96 and Microsoft Edge before its corresponding 148.0.7778.xxx security update. The vulnerability is not the loudest bug in the Chrome 148...