Integer Overflow Vulnerability in Google Chrome Affects Multiple Versions
CVE-2026-8577

Currently unrated

Key Information:

Vendor: Google
Status: Chrome
Vendor: CVE Published:; 14 May 2026

What is CVE-2026-8577?

An integer overflow vulnerability exists in the Font processing component of Google Chrome, impacting versions prior to 148.0.7778.168. This flaw allows a remote attacker to initiate arbitrary code execution within a sandboxed environment by utilizing a specially crafted HTML page. This exploitation could potentially lead to unauthorized operations or access, highlighting the need for users to update their browsers to the latest version to mitigate this risk.

Affected Version(s)

Chrome 148.0.7778.168

References

https://chromereleases.googleblog.com/2026/05/stable-chan...

https://issues.chromium.org/issues/496302307

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 14, 2026
Vulnerability Reserved
May 14, 2026

CVE-2026-8577 Data

JSON