CVE-2026-2315 — Vulnetix

CVE-2026-2315 PUBLISHED CVSS 8.800000190734863 HIGH

Inappropriate implementation in WebGPU in Google Chrome prior to 145.0.7632.45 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

EPSS 0.04% · 11.4th percentile

Risk Scores

CVSS v3.1

8.800000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS Score

0.04%

11.4th percentile

Affected Products

Vendor	Product	Versions
Google	Chrome	145.0.7632.45
google	chrome	0, 0

Timeline

Feb 11, 2026 CVE Published
Feb 12, 2026 EPSS Score
Feb 12, 2026 PoC Published
Feb 12, 2026 PoC Published
Feb 12, 2026 PoC Published
Feb 13, 2026 PoC Published
Feb 13, 2026 PoC Published
Feb 14, 2026 EPSS Score
Feb 15, 2026 PoC Published
Feb 15, 2026 PoC Published
Feb 16, 2026 EPSS Score
Feb 18, 2026 EPSS Score

References

https://chromereleases.googleblog.com/2026/02/stable-channel-update-for-desktop_10.html url
https://issues.chromium.org/issues/479242793 url
https://nvd.nist.gov/vuln/detail/CVE-2026-2315 advisory

Open in Interactive Console →