- 67/2026
- High
Google has released an updated Chrome version 146.0.7680.164/165 for Windows/Mac and 146.0.7680.164 for Linux.
The addressed vulnerabilities could allow the remote attacker to execute arbitrary code, cause memory corruption, or bypass security restrictions by persuading the victim to visit a malicious website.
Sample of the addressed vulnerabilities:
1. Google Chrome Out of Bounds Memory Access in WebGL Vulnerability (CVE-2026-4439):
- CVSS: 8.8
- Attack Vector: Network
- Attack Complexity: Low
- Privileges Required: None
- User Interaction: Required
- Consequences: Bypass Security
2. Google Chrome Heap Buffer Overflow in WebAudio Vulnerability (CVE-2026- 4443):
- CVSS: 8.8
- Attack Vector: Network
- Attack Complexity: Low
- Privileges Required: None
- User Interaction: Required
- Consequences: Gain Access
Vulnerabilities
Mitigations
The enterprise should deploy this patch as soon as the testing phase is completed.