216.73.216.6

CVE-2026-3910

· Published 13/03/2026 01:00 · Modified 14/04/2026 11:20 · Author: The MITRE Corporation

Labels: CVE-2026-3910 2026-03-13CVE-2026-3910CWE-119CWE-94[email protected]

Essential information

Published
13/03/2026 01:00
Modified
14/04/2026 11:20
Author
The MITRE Corporation
Creator
The MITRE Corporation
CVSS
8.8 HIGH (v3.1)
CISA KEV
Yes
CWE
EPSS (First)
P23.4% ?EPSS percentile: rank of this vulnerability versus all others. Higher percentile = more likely to be exploited. Learn more (score 0.00080)
CVSS vector
CVSS:3.1/AV:N/C:H/I:H/A:H

CVSS metrics

Description

Google Chromium V8 contains an improper restriction of operations within the bounds of a memory buffer vulnerability that could allow a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.

NVD status

Status
Analyzed — CVE has had analysis completed and all data associations made.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
google / chrome cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
apple / macos cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
linux / linux kernel cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
microsoft / windows cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

References

Related entities

Attack reports, intrusion sets, malwares, attack patterns and indicators linked to this vulnerability.

Attack reports (1)