Type Confusion Vulnerability in Google Chrome Affecting Multiple Versions
CVE-2026-6363

8.8HIGH

Key Information:

Vendor: Google
Status: Chrome
Vendor: CVE Published:; 15 April 2026

What is CVE-2026-6363?

A type confusion vulnerability exists in the V8 JavaScript engine of Google Chrome, which can allow a remote attacker to exploit this weakness. By crafting a malicious HTML page, the attacker could potentially manipulate memory access beyond intended boundaries. This could lead to unforeseen behavior in the application, highlighting the importance of keeping your web browser up to date to safeguard against such threats.

Affected Version(s)

Chrome 147.0.7727.101

References

https://chromereleases.googleblog.com/2026/04/stable-chan...

https://issues.chromium.org/issues/495751197

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 15, 2026
Vulnerability Reserved
Apr 15, 2026

CVE-2026-6363 Data

JSON