cve-2026-7995

CVE-2026-7995 is a medium-severity vulnerability disclosed by Google and Microsoft in May 2026, involving an out-of-bounds read in Chromium's AdFilter component. It affects Chrome versions before 148.0.7778.96 and Edge builds that incorporate the vulnerable Chromium code. Exploitation can occur through a crafted HTML page, potentially leading to a sandboxed remote code execution. For Windows users and enterprise administrators, the key takeaway is that browsers below the patched version are exposed. This tag covers discussions about the vulnerability's impact, patching urgency, and its role as a reminder that not all browser risks are labeled critical.