Loading…

Cookies and privacy

We use strictly necessary cookies to run the site. With your permission we also load Vercel Web Analytics and Speed Insights to measure traffic and performance in aggregate. See our Cookie Policy and Privacy Policy.

CVE-2026-11645: Google Chromium V8 Out-of-Bounds Read and Write Vulnerability · Scorifya

CVE detail

CVE-2026-11645: Google Chromium V8 Out-of-Bounds Read and Write Vulnerability

Source: CISA Known Exploited Vulnerabilities catalog · back to feed

Vendor / product

Google · Chromium V8

Date added (KEV): Jun 09, 2026
CISA due date: Jun 23, 2026
Ransomware campaign use: Unknown

Required action

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Vendor fix: Vendor advisory

Scorifya interpretation

AI-generated

A short, structured read of the record above — generated when this page first loads, then cached for a week.

Plain English

Technical detail

From CISA

Google Chromium V8 out-of-bounds read and write vulnerability that could allow a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.

https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0153744567.html ; https://issues.chromium.org/issues/506689381 ; https://nvd.nist.gov/vuln/detail/CVE-2026-11645

See what attackers can see on your domain

This vulnerability is on CISA's Known Exploited Vulnerabilities list, so it is being exploited in the wild right now. Scorifya can't test for Google directly, but in about 30 seconds it shows what your own domain exposes publicly across TLS, security headers, DNS, and cookies: the surface attackers probe first.

Run a free scan Methodology

References

https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0153744567.htmlRelease NotesVendor Advisory
https://issues.chromium.org/issues/506689381Permissions Required
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-11645US Government Resource

Other recent CVEs from Google

CVE-2026-5281Dawn — Google Dawn Use-After-Free Vulnerability
CVE-2026-3909Skia — Google Skia Out-of-Bounds Write Vulnerability
CVE-2026-3910Chromium V8 — Google Chromium V8 Improper Restriction of Operations Within the Bounds of a Memory Buffer Vulnerability
CVE-2026-2441Chromium — Google Chromium CSS Use-After-Free Vulnerability
CVE-2025-14174Chromium — Google Chromium Out of Bounds Memory Access Vulnerability