Out of Bound Read Vulnerability in Google Chrome for Android
CVE-2026-6920

9.6CRITICAL

Key Information:

Vendor: Google
Status: Chrome
Vendor: CVE Published:; 23 April 2026

What is CVE-2026-6920?

An out of bounds read issue exists in the GPU component of Google Chrome for Android. This vulnerability allows a remote attacker, who gains control of the renderer process, to perform a potential sandbox escape by leveraging a specially crafted HTML page. This could lead to unauthorized access or compromise of sensitive information within the browser. Users are encouraged to update to the latest version to mitigate this risk.

Affected Version(s)

Chrome 147.0.7727.117

References

https://chromereleases.googleblog.com/2026/04/stable-chan...

https://issues.chromium.org/issues/499891888

CVSS V3.1

Score:

9.6

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 23, 2026
Vulnerability Reserved
Apr 23, 2026

CVE-2026-6920 Data

JSON