Heap Buffer Overflow in Google Chrome Affects Skia Component
CVE-2026-7353

Currently unrated

Key Information:

Vendor: Google
Status: Chrome
Vendor: CVE Published:; 28 April 2026

What is CVE-2026-7353?

A vulnerability has been identified in the Skia component of Google Chrome, which could allow a remote attacker to potentially perform a sandbox escape. This is achieved through crafted HTML pages that can exploit a heap buffer overflow condition present in the earlier versions of the browser. Successful exploitation may enable attackers to access restricted areas of the system, underlining the importance of using an updated version of Google Chrome to mitigate such security risks.

Affected Version(s)

Chrome 147.0.7727.138

References

https://chromereleases.googleblog.com/2026/04/stable-chan...

https://issues.chromium.org/issues/498809718

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 28, 2026
Vulnerability Reserved
Apr 28, 2026

CVE-2026-7353 Data

JSON