Vulnerability in Google Chrome
CVE-2026-5907
Insufficient data validation in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform an out of bounds memory read via a crafted video file. (Chromium security severity: Low)
EPSS: 0.001 (26.2th percentile) — read the EPSS interpretation.
Affected products
- Google Chrome — versions 147.0.7727.55