https://feed.craftedsignal.io/tags/cve-2026-3909/Trending threats, MITRE ATT&CK coverage, and detection metadata — refreshed continuously.Hugoenhello@craftedsignal.iohello@craftedsignal.ioSat, 14 Mar 2026 10:00:00 +0000https://feed.craftedsignal.io/briefs/2026-03-cisa-kev-google-vulnerabilities/Sat, 14 Mar 2026 10:00:00 +0000hello@craftedsignal.iohttps://feed.craftedsignal.io/briefs/2026-03-cisa-kev-google-vulnerabilities/CISA added CVE-2026-3909, an out-of-bounds write vulnerability in Google Skia, and CVE-2026-3910, an unspecified vulnerability in Google Chromium V8 to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation, highlighting the need for timely remediation.<p>On March 13, 2026, CISA added CVE-2026-3909, an out-of-bounds write vulnerability in Google Skia, and CVE-2026-3910, an unspecified vulnerability in Google Chromium V8, to its Known Exploited Vulnerabilities (KEV) Catalog. These vulnerabilities are actively being exploited in the wild and are considered frequent attack vectors. While CISA&rsquo;s BOD 22-01 mandates Federal Civilian Executive Branch (FCEB) agencies to remediate these vulnerabilities, CISA strongly urges all organizations to prioritize…</p> highthreatvulnerabilitychromeskiacve-2026-3909cve-2026-3910