HIGHVulnerability
Verified
Global

CISA KEV: Google Chromium V8 — Google Chromium V8 Out-of-Bounds Read and Write Vulnerability

·Source: CISA KEV

Updated:

Executive Summary

Google Chromium V8 out-of-bounds read and write vulnerability that could allow a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.

Analysis

Google Chromium V8 out-of-bounds read and write vulnerability that could allow a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera. Added to CISA Known Exploited Vulnerabilities catalog on 2026-06-09. Remediation due: 2026-06-23.

Indicators of Compromise (1)

CVE (1)
CVE-2026-11645
Source Attribution

Originally published by CISA KEV on Jun 9, 2026. Verified by: CISA.

Related Threats