CISA Adds Two Google Chrome Zero-Days to KEV

CISA Adds Two Google Chrome Zero-Days to KEV

CISA has updated its Known Exploited Vulnerabilities (KEV) catalog with two newly confirmed zero-days affecting Google Chrome — CVE-2026-3909 and CVE-2026-3910. Both vulnerabilities are confirmed exploited in the wild, and…
Google Patches First Chrome Zero-Day of 2026

Google Patches First Chrome Zero-Day of 2026

CVE-2026-2441 is a high-severity use-after-free vulnerability in Google Chrome's CSS processing component. It affects versions prior to 145.0.7632.75 and allows remote attackers to potentially execute arbitrary code within the browser's…
CISA adds Chrome ans Sierra Bugs to KEV Catalog

CISA adds Chrome ans Sierra Bugs to KEV Catalog

CISA has added two high‑impact vulnerabilities—CVE‑2025‑14174 in Google Chromium and CVE‑2018‑4063 in Sierra Wireless AirLink ALEOS—to the Known Exploited Vulnerabilities (KEV) catalog after confirming active exploitation in the wild. Under…
Google Fixes two Medium Severity Bugs in Chrome

Google Fixes two Medium Severity Bugs in Chrome

Google Chrome recently addressed two medium-severity vulnerabilities, CVE-2025-14372 and CVE-2025-14373, in its Stable channel update to version 143.0.7499.109, released around December 9-10, 2025. These flaws affect browsers prior to this…
Google Chrome 143 Stable Channel Released

Google Chrome 143 Stable Channel Released

Google Chrome 143 patches four high-severity vulnerabilities (CVE-2025-13630 to CVE-2025-13633), all enabling remote code execution, privilege escalation, or sandbox escapes when chained, affecting billions of users on unpatched versions prior…