Type Confusion in V8 Engine Affecting Google Chrome
CVE-2026-7337

Currently unrated

Key Information:

Vendor: Google
Status: Chrome
Vendor: CVE Published:; 28 April 2026

What is CVE-2026-7337?

A type confusion vulnerability in the V8 JavaScript engine, which powers Google Chrome, could allow attackers to execute arbitrary code. This vulnerability can be exploited when a user visits a specially crafted HTML page, potentially compromising the user's system within a sandboxed environment.

Affected Version(s)

Chrome 147.0.7727.138

References

https://chromereleases.googleblog.com/2026/04/stable-chan...

https://issues.chromium.org/issues/500880819

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 28, 2026
Vulnerability Reserved
Apr 28, 2026

CVE-2026-7337 Data

JSON