CVE-2026-8543 — Vulnetix

CVE-2026-8543 PUBLISHED CVSS 8.699999809265137 HIGH

Out of bounds read in FileSystem in Google Chrome on Mac prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)

EPSS 0.03% · 9.1th percentile

Risk Scores

CVSS v4.0

8.699999809265137

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

EPSS Score

0.03%

9.1th percentile

Affected Products

Vendor	Product	Versions
Google	Chrome	148.0.7778.168

Timeline

May 14, 2026 PoC Published
May 14, 2026 CVE Published
May 14, 2026 CVE Updated
May 15, 2026 EPSS Score
May 15, 2026 Security Advisory
May 18, 2026 EPSS Score
May 19, 2026 EPSS Score
May 19, 2026 Security Advisory
May 19, 2026 Security Advisory
May 19, 2026 Security Advisory
May 19, 2026 Security Advisory
May 19, 2026 Security Advisory

References

https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_12.html url
https://issues.chromium.org/issues/497095799 url
https://nvd.nist.gov/vuln/detail/CVE-2026-8543 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8541 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8577 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8509 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8527 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8584 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8535 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8576 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8518 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8549 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8538 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8544 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8536 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8573 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8531 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8580 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8546 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8558 advisory

…and 59 more

Open in Interactive Console →