Changeflow GovPing Data Privacy & Cybersecurity Google Chrome Vulnerabilities - Code Execution ...
Priority review Notice Added Final

Google Chrome Vulnerabilities - Code Execution Risk

Favicon for wid.cert-bund.de CERT-Bund Security Advisories
Published March 31st, 2026
Detected April 1st, 2026
Email

Summary

CERT-Bund issued a security advisory (WID-SEC-2026-0937) warning of multiple high-severity vulnerabilities in Google Chrome versions prior to 146.0.7680.177/178, with CVSS Base Score 8.8. The vulnerabilities affect Chrome on Windows, macOS, and Linux, allowing remote attackers to potentially execute code, bypass security measures, cause denial of service, disclose information, and manipulate data. Users are advised to update immediately.

View original document View source feed page

What changed

CERT-Bund published security advisory WID-SEC-2026-0937 identifying multiple vulnerabilities in Google Chrome with CVSS Base Score 8.8 (high severity). Affected versions are Chrome <146.0.7680.177 (Windows/Linux) and <146.0.7680.178 (macOS). The vulnerabilities enable remote code execution, security bypass, denial-of-service, information disclosure, and data manipulation attacks.

Organizations running Chrome should update to version 146.0.7680.177 or later immediately. Given the CVSS 8.8 score and remote attack vector, priority patching is critical. CERT-Bund confirms mitigation measures are available.

What to do next

  1. Update Google Chrome to version 146.0.7680.177 or later on Windows and Linux systems
  2. Update Google Chrome to version 146.0.7680.178 or later on macOS systems
  3. Verify automatic update functionality or deploy updates via enterprise management tools

Source document (simplified)

[WID-SEC-2026-0937] Google Chrome: Mehrere Schwachstellen CVSS Base Score 8.8 (hoch) CVSS Temporal Score 8.2 (hoch) Remoteangriff ja Datum 31.03.2026 Stand 01.04.2026 Mitigation ja

Betroffene Systeme

Betriebssystem

  • Linux
  • MacOS X
  • Windows

Produktbeschreibung

Chrome ist ein Internet-Browser von Google.

Produkte

31.03.2026
- Google Chrome <146.0.7680.177

  • Google Chrome <146.0.7680.178

Angriff

Angriff

Ein Angreifer kann mehrere Schwachstellen in Google Chrome ausnutzen, um nicht näher definierte Angriffe durchzuführen, darunter möglicherweise Codeausführung, Umgehung von Sicherheitsmaßnahmen, Denial-of-Service, Offenlegung von Informationen und Datenmanipulation. CVE Informationen Versionshistorie Feedback zum Advisory geben

Related changes

Favicon for wid.cert-bund.de Critical xz Utils Vulnerability Enables Remote Code Execution
Urgent Apr 01, 2026 CERT-Bund Security Advisories Data Privacy & Cybersecurity
Favicon for wid.cert-bund.de Vim Vulnerability - Arbitrary Code Execution Risk
Urgent Apr 01, 2026 CERT-Bund Security Advisories Data Privacy & Cybersecurity
Favicon for wid.cert-bund.de gdk-pixbuf Vulnerability - Denial of Service and Remote Code Execution Risk
Priority review Apr 01, 2026 CERT-Bund Security Advisories Data Privacy & Cybersecurity
Favicon for changeflow.com Method and System for IoT Device Interaction Cryptography
Routine Apr 01, 2026 ChangeBridge: EPO Bulletin - Networking (H04L) Telecom & Technology
Favicon for changeflow.com Detecting Anomalous Network Activity - Patent EP4078417A1
Routine Apr 01, 2026 ChangeBridge: EPO Bulletin - AI & Computing (G06N) Telecom & Technology
Favicon for oig.justice.gov OJP Security Controls and PSOB System 2.0 Audit
Routine Apr 01, 2026 DOJ Inspector General Reports Consumer Protection

Source

Favicon for wid.cert-bund.de
CERT-Bund Security Advisories wid.cert-bund.de/content/public/securityAdvisory/rss
Data Privacy & Cybersecurity
Analysis generated by AI. Source diff and links are from the original.

Classification

Agency
CERT-Bund
Published
March 31st, 2026
Instrument
Notice
Legal weight
Non-binding
Stage
Final
Change scope
Minor
Document ID
WID-SEC-2026-0937

Who this affects

Applies to
Technology companies Employers Government agencies
Industry sector
3341 Computer & Electronics Manufacturing 5112 Software & Technology
Activity scope
Software Vulnerability Management Patch Management IT Security Operations
Geographic scope
Germany DE

Taxonomy

Primary area
Cybersecurity
Operational domain
IT Security
Compliance frameworks
NIST CSF NIST 800-53
Topics
Data Privacy Technology

Browse Categories

Agriculture & Food Safety 63 AI Regulation 3 Banking & Finance 266 Consumer & Competition 1 Consumer Protection 44 Courts & Legal 360 Data Privacy & Cybersecurity 74 Defense & National Security 52 Education 20 Energy 107 Environment 85 Government & Legislation 283 Healthcare 136 Housing 16 Immigration 9 Insurance 58 Labor & Employment 113 Legal & Courts 1 Pharma & Drug Safety 103 Securities & Markets 104 Tax 65 Tax & Revenue 1 Telecom & Technology 47 Trade & Sanctions 124 Transportation 57

Get Data Privacy & Cybersecurity alerts

Weekly digest. AI-summarized, no noise.

Free. Unsubscribe anytime.

Get alerts for this source

We'll email you when CERT-Bund Security Advisories publishes new changes.

Optional. Personalizes your daily digest.

Free. Unsubscribe anytime.