https://feed.craftedsignal.io/tags/cve-2026-4676/Trending threats, MITRE ATT&CK coverage, and detection metadata — refreshed continuously.Hugoenhello@craftedsignal.iohello@craftedsignal.ioTue, 24 Mar 2026 01:17:03 +0000https://feed.craftedsignal.io/briefs/2026-03-chrome-uaf/Tue, 24 Mar 2026 01:17:03 +0000hello@craftedsignal.iohttps://feed.craftedsignal.io/briefs/2026-03-chrome-uaf/A use-after-free vulnerability (CVE-2026-4676) in Google Chrome before 146.0.7680.165 allows a remote attacker to potentially perform a sandbox escape via a crafted HTML page.<p>CVE-2026-4676 is a use-after-free vulnerability affecting Google Chrome versions prior to 146.0.7680.165. This flaw resides within the Dawn component of Chrome and can be triggered by a remote attacker who crafts a malicious HTML page. Successful exploitation could lead to a sandbox escape, granting the attacker elevated privileges within the system. This vulnerability was patched in the March 23, 2026 stable channel update for desktop. The vulnerability affects users on Windows, Linux, and…</p> highadvisoryuse-after-freesandbox-escapechromecve-2026-4676