cve-2026-8001

CVE-2026-8001 is a use-after-free vulnerability in Chrome's printing component, disclosed on May 6, 2026 and patched in Chrome 148.0.7778.96 for Linux and 148.0.7778.96/97 for Windows and Mac. The flaw could allow an attacker who has already compromised the renderer process to escape the browser sandbox on Linux, macOS, and ChromeOS. While Chromium rated it low severity, the tag's discussions emphasize that such post-compromise sandbox escape bugs are often underprioritized but still dangerous in real-world attacks. WindowsForum threads covering CVE-2026-8001 focus on the importance of applying the patch promptly, understanding that low severity does not mean low risk, and recognizing that printing-related vulnerabilities can have broader security implications.