V8 Vulnerability in Google Chrome Exposes Sensitive Information
CVE-2026-7999

Currently unrated

Key Information:

Vendor: Google
Status: Chrome
Vendor: CVE Published:; 6 May 2026

What is CVE-2026-7999?

An improper implementation in the V8 JavaScript engine within Google Chrome versions prior to 148.0.7778.96 enables remote attackers to exploit crafted HTML pages. This can lead to the unauthorized access of sensitive information from the browser's memory, posing a risk to user data privacy. Users are advised to update to the latest version of Google Chrome to mitigate this vulnerability.

Affected Version(s)

Chrome 148.0.7778.96

References

https://chromereleases.googleblog.com/2026/05/stable-chan...

https://issues.chromium.org/issues/493099941

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 6, 2026
Vulnerability Reserved
May 5, 2026

CVE-2026-7999 Data

JSON