CVE-2026-8876
CVE-2026-8876

Currently unrated

Key Information:

Vendor: Securly
Status: Securly Chrome Extension
Vendor: CVE Published:; 3 June 2026

What is CVE-2026-8876?

Version 3.0.7 of the Securly Chrome Extension contains hardcoded, plaintext AES passphrases in securly.min.js. These keys decrypt crisis alert keyword data and intervention site data.

Affected Version(s)

Securly Chrome Extension 0 <= 3.0.7

References

https://kb.cert.org/vuls/id/595768

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 3, 2026
Vulnerability Reserved
May 18, 2026

CVE-2026-8876 Data

JSON