Type Confusion Vulnerability in Google Chrome WebRTC
CVE-2026-7988

Currently unrated

Key Information:

Vendor: Google
Status: Chrome
Vendor: CVE Published:; 6 May 2026

What is CVE-2026-7988?

A type confusion vulnerability in the WebRTC component of Google Chrome allows remote attackers to execute arbitrary code within a sandboxed environment. This can be triggered by a specially crafted HTML page, potentially leading to unauthorized access and control over the affected system. Users are urged to update to the latest version to mitigate this risk.

Affected Version(s)

Chrome 148.0.7778.96

References

https://chromereleases.googleblog.com/2026/05/stable-chan...

https://issues.chromium.org/issues/498753456

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 6, 2026
Vulnerability Reserved
May 5, 2026

CVE-2026-7988 Data

JSON