Heap Buffer Overflow Vulnerability in WebRTC for Google Chrome
CVE-2026-12466

Currently unrated

Key Information:

Vendor: Google
Status: Chrome
Vendor: CVE Published:; 17 June 2026

What is CVE-2026-12466?

A heap buffer overflow vulnerability exists in the WebRTC component of Google Chrome on Windows prior to version 149.0.7827.155. This flaw allows remote attackers to craft malicious HTML content and execute arbitrary code when a user interacts with affected versions of the browser. Users are advised to update their browser to mitigate potential risks associated with this vulnerability.

Affected Version(s)

Chrome 149.0.7827.155

References

https://chromereleases.googleblog.com/2026/06/stable-chan...

https://issues.chromium.org/issues/520199394

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 17, 2026
Vulnerability Reserved
Jun 16, 2026

CVE-2026-12466 Data

JSON