CVE-2026-2441 - Vulnerability Details

- chromium-browser: Use after free in CSS

Description

Use after free in CSS in Google Chrome prior to 145.0.7632.75 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

Published: 2026-02-13

Score: 8.8 High

EPSS: 22.0% Moderate

KEV: Yes

Impact:

Action:

Analysis

Impact

A use‑after‑free vulnerability exists in the CSS parser of Google Chrome prior to version 145.0.7632.75. The flaw occurs when the browser releases memory that is later accessed while parsing CSS, allowing an attacker to execute arbitrary code in the sandboxed browser process. The execution is confined to the sandbox; launching attacks beyond the sandbox requires additional weaknesses.

Affected Systems

Google Chrome installations running any version earlier than 145.0.7632.75 on Windows, macOS, or Linux are affected. Users who load malicious web pages rendered by those browsers are at risk.

Risk and Exploitability

The CVSSifies the flaw as high severity, and its EPSS score of 22 % indicates a moderate likelihood of exploitation. The vulnerability is listed in the CISA KEV catalog, confirming that attacks have been observed. The attack vector is remote – a victim must load a malicious web page that triggers the CSS parser. Because the code runs inside the Chrome sandbox, the impact is limited to the browser process itself, but it can affect the confidentiality and integrity of data processed by the browser.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Google

Chrome

affected

Version	Status	Constraints
`145.0.7632.75`	affected	< 145.0.7632.75

Configuration 1 [-]

AND

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

OR	cpe:2.3:o:linux:linux_kernel:-:::::::*
	cpe:2.3:o:microsoft:windows:-:::::::*

Configuration 2 [-]

AND

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*

No data.

Vendor Product Confidence Versions

Google

Chrome

—

Version	Status	Scheme	Platform
`[145.0.7632.75,145.0.7632.75)`	affected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Update Chrome to version 145.0.7632.75 or later to remove the memory‑corruption flaw.
Confirm that Chrome’s built‑in sandbox is enabled; for custom builds enable it with the '--enable-sandbox' flag if necessary.
Apply a content security policy that restricts CSS loading or blocks inline styles from untrusted origins to reduce the risk of delivering malicious content to the vulnerable parser.

Generated by OpenCVE AI on June 18, 2026 at 04:50 UTC.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
Debian DSA	DSA-6135-1	chromium security update

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is in the KEV database since Feb. 17, 2026.

The EPSS score is 0.2202.

Exploitation active

Automatable no

Technical Impact total

References

Link	Providers
https://chromereleases.googleblog.com/2026/02/stable-channel-update-for-desktop_13.html
https://github.com/huseyinstif/CVE-2026-2441-PoC/blob/main/poc.html
https://issues.chromium.org/issues/483569511
https://nvd.nist.gov/vuln/detail/CVE-2026-2441
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-2441
https://www.cve.org/CVERecord?id=CVE-2026-2441

History

Fri, 20 Feb 2026 21:30:00 +0000

Type	Values Removed	Values Added
References		https://github.com/huseyinstif/CVE-2026-2441-PoC/blob/main/poc.html

Tue, 17 Feb 2026 21:15:00 +0000

Type	Values Removed	Values Added
References		https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-2441
Metrics	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'active', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Tue, 17 Feb 2026 20:45:00 +0000

Type	Values Removed	Values Added
Metrics		kev `{'dateAdded': '2026-02-17T00:00:00+00:00', 'dueDate': '2026-03-10T00:00:00+00:00'}`

Tue, 17 Feb 2026 16:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Apple Apple macos Linux Linux linux Kernel Microsoft Microsoft windows
CPEs		cpe:2.3:a:google:chrome:::::::: cpe:2.3:o:apple:macos:-:::::::* cpe:2.3:o:linux:linux_kernel:-:::::::* cpe:2.3:o:microsoft:windows:-:::::::*
Vendors & Products		Apple Apple macos Linux Linux linux Kernel Microsoft Microsoft windows

Sat, 14 Feb 2026 00:15:00 +0000

Type	Values Removed	Values Added
Title		chromium-browser: Use after free in CSS
References		https://nvd.nist.gov/vuln/detail/CVE-2026-2441 https://www.cve.org/CVERecord?id=CVE-2026-2441
Metrics	threat_severity `None`	threat_severity `Important`

Fri, 13 Feb 2026 21:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Google Google chrome
Vendors & Products		Google Google chrome

Fri, 13 Feb 2026 19:15:00 +0000

Type	Values Removed	Values Added
Metrics		cvssV3_1 `{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Fri, 13 Feb 2026 18:45:00 +0000

Type	Values Removed	Values Added
Description		Use after free in CSS in Google Chrome prior to 145.0.7632.75 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
Weaknesses		CWE-416
References		https://chromereleases.googleblog.com/2026/02/stable-channel-update-for-desktop_13.html https://issues.chromium.org/issues/483569511

Subscriptions

Apple Macos

Google Chrome

Linux Linux Kernel

Microsoft Windows

MITRE

Status: PUBLISHED

Assigner: Chrome

Published: 2026-02-13T18:27:48.355Z

Updated: 2026-02-26T14:44:20.573Z

Reserved: 2026-02-13T00:00:18.713Z

Link: CVE-2026-2441

Vulnrichment

Updated: 2026-02-13T19:05:03.744Z

NVD

Status : Analyzed

Published: 2026-02-13T19:17:31.310

Modified: 2026-06-17T10:30:57.667

Link: CVE-2026-2441

Redhat

Severity : Important

Publid Date: 2026-02-13T00:00:00Z

Links: CVE-2026-2441 - Bugzilla

OpenCVE Enrichment

Updated: 2026-06-18T05:00:17Z

Weaknesses

CWE-416
Use After Free

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

Exploitation active

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object