Description
Out of bounds read in Skia in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)
Published: 2026-03-20
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: Out-of-bounds memory read
Action: Immediate Patch
AI Analysis

Impact

An out-of-bounds read occurs in Skia when a crafted HTML page is processed by Google Chrome before version 146.0.7680.153. The bug allows a remote attacker to read memory locations outside the bounds of a buffer, potentially exposing arbitrary data stored in Chrome's process memory. This can lead to leakage of sensitive information such as credentials, cookies, or other private data, thereby compromising confidentiality.

Affected Systems

Any installation of Google Chrome on Windows, macOS, or Linux is vulnerable if it runs a version earlier than 146.0.7680.153. The issue exists across all platforms supported by Chrome, regardless of operating system, because the underlying Skia library is cross‑platform.

Risk and Exploitability

The CVSS v3 score of 8.8 classifies this as a High severity vulnerability. The EPSS score of less than 1% indicates a low likelihood of widespread exploitation at present, and the vulnerability is not listed in the CISA KEV catalog. The likely attack vector is via a malicious HTML page served over the network or opened locally, requiring the user to visit or open the crafted content. While the flaw does not provide direct code execution, the resulting memory disclosure could be leveraged by an attacker to compromise user data or leverage additional weaknesses.

Generated by OpenCVE AI on March 20, 2026 at 19:37 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Google Chrome to version 146.0.7680.153 or later.
  • Verify update by checking the Chrome version in the browser settings.
  • If unable to update immediately, avoid opening untrusted web pages until a patch is applied.
  • Monitor official Chrome release notes for further updates.

Generated by OpenCVE AI on March 20, 2026 at 19:37 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DSA Debian DSA DSA-6171-1 chromium security update
History

Fri, 20 Mar 2026 18:00:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
Linux
Linux linux Kernel
Microsoft
Microsoft windows
CPEs cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
Vendors & Products Apple
Apple macos
Linux
Linux linux Kernel
Microsoft
Microsoft windows

Fri, 20 Mar 2026 15:15:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N'}

 ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}

Fri, 20 Mar 2026 12:15:00 +0000

Type Values Removed Values Added
Title Out of Bounds Memory Read in Skia via Crafted HTML Page chromium-browser: Out of bounds read in Skia
References
Metrics threat_severity

None

 cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N'}

threat_severity

Important

Fri, 20 Mar 2026 11:15:00 +0000

Type Values Removed Values Added
Title Out of Bounds Memory Read in Skia via Crafted HTML Page

Fri, 20 Mar 2026 09:00:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Fri, 20 Mar 2026 02:15:00 +0000

Type Values Removed Values Added
Description Out of bounds read in Skia in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)
Weaknesses CWE-125
References

Subscriptions

Apple Macos
Google Chrome
Linux Linux Kernel
Microsoft Windows
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-03-21T04:01:28.194Z

Reserved: 2026-03-19T20:23:54.216Z

Link: CVE-2026-4460

cve-icon Vulnrichment

Updated: 2026-03-20T14:23:33.415Z

cve-icon NVD

Status : Analyzed

Published: 2026-03-20T02:16:39.300

Modified: 2026-03-20T17:57:46.137

Link: CVE-2026-4460

cve-icon Redhat

Severity : Important

Publid Date: 2026-03-18T00:00:00Z

Links: CVE-2026-4460 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-03-25T14:09:45Z

Weaknesses