Update Chrome now — Google patches new zero-day flaw already being exploited

Google patches high‑severity Chrome V8 bug (CVE‑2026‑11645) exploited in the wild
Flaw allows remote code execution via crafted HTML on versions before 149.0.7827.103
Fixes now live for Windows, Mac, and Linux; users urged to update immediately

Google has fixed a high-severity vulnerability in its Chrome browser that was apparently being abused in the wild.

The company has released a new security advisory informing users about fixing dozens of flaws, including an out of bounds read and write bug in Chrome V8 which could allow remote attackers to execute arbitrary code inside a sandbox via a crafted HTML page, was found in Google Chrome prior to 149.0.7827.103.

The issue is now tracked as CVE-2026-11645 and was given a severity score of 8.8/10 (high).

No details about the attacks

In theory, the flaw could be used to steal corporate emails, documents, session cookies, or other sensitive information. All it would take is a person opening a weaponized page in a vulnerable version of Chrome to trigger the exploit.

“Google is aware that an exploit for CVE-2026-11645 exists in the wild,” Google said in the advisory, without sharing any details. “Access to bug details and links may be kept restricted until a majority of users are updated with a fix,” the company added. “We will also retain restrictions if the bug exists in a third-party library that other projects similarly depend on but haven’t yet fixed.”

The bug has now been addressed in the Stable Desktop channel with patches being released for Windows (149.0.7827.102), Mac (149.0.7827.103), and Linux (149.0.7827.102).

Google usually says that it takes weeks for the patch to roll out globally but in most cases, by the time the advisory is published, most browsers will have been patched already. Those who are unsure if their Chrome is updated should navigate to chrome://settings/help in the address bar, press Enter and wait while Chrome checks for updates. If any are found, they will be prompted to download and install.

Via BleepingComputer

The best antivirus for all budgets

Google logo on a black background next to text reading 'Click to follow TechRadar'

Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds.

https://cdn.mos.cms.futurecdn.net/tSejjmrgK46MgdhWqD5miC-2000-80.jpg

Source link

Brother MFC-L8970CDW color laser printer review

Meta wants to train Americans to build its data centers — and is offering a free 5-week program to teach you everything

Nest Mini and Nest Audio speakers are mysteriously vanishing from the shelves, and I’m convinced the new Google Home Speaker is arriving soon

The Bear season 5 finally has a trailer — and it could be the Hulu show’s most stressful chapter yet

Ex-Israeli Intelligence Official: Shockwaves of Trump’s “Take Over Gaza” Heard, Felt Across Region

What UK political parties are promising in the 2019 general election

Otto Warmbier’s parents want North Korea to suffer for their son’s death

Could a ‘youthquake’ cause Boris Johnson to lose the general election?

Hannah Berner Details Summer House Firing & Stand-Up Comedy Success

Thief: The Dark Project Remastered Is A Loving Recreation Of A Classic

Netflix’s Hit British Murder Mystery Is Officially Ending

Why Naughty Dog May Skip the PS5 Generation

Bank of America could exceed 15% market revenue growth in Q2

NSE to route 10% of CSR spending through Social Stock Exchange after regulatory green light

Why is Apple stock sliding today?

This CEO keeps going viral for thirst-trapping journalists with $200,000 head of content jobs

The YouTuber who has become one of Gen Z’s most beloved celebrities

26 last-minute holiday gifts that are still thoughtful and unique

Practicing gratitude regularly can make you less stressed and sleep better

8 things millennials wish you would just stop getting them for the holidays