Insufficient Input Validation in Google Chrome Affects User Security
CVE-2026-7345

Currently unrated

Key Information:

Vendor: Google
Status: Chrome
Vendor: CVE Published:; 28 April 2026

What is CVE-2026-7345?

A security flaw in Google Chrome has been identified, which stems from insufficient validation of untrusted input in the Feedback component. This vulnerability enables a remote attacker, who has managed to compromise the renderer process, to potentially execute a sandbox escape by leveraging a specially crafted HTML page. Such exploitation could lead to severe security risks for users due to the breach of isolation that sandboxes are designed to provide. Users are recommended to update to the latest version of Google Chrome to protect against this vulnerability.

Affected Version(s)

Chrome 147.0.7727.138

References

https://chromereleases.googleblog.com/2026/04/stable-chan...

https://issues.chromium.org/issues/502248774

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 28, 2026
Vulnerability Reserved
Apr 28, 2026

CVE-2026-7345 Data

JSON