CVE-2026-8538
Severity CVSS v4.0:
Pending analysis
Type:
CWE-20
Input Validation
Publication date:
14/05/2026
Last modified:
14/05/2026
Description
Insufficient validation of untrusted input in GPU in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform a denial of service via a crafted HTML page. (Chromium security severity: High)
Impact
Base Score 3.x
5.30
Severity 3.x
MEDIUM