https://feed.craftedsignal.io/tags/cve-2026-4680/Trending threats, MITRE ATT&CK coverage, and detection metadata — refreshed continuously.Hugoenhello@craftedsignal.iohello@craftedsignal.ioTue, 24 Mar 2026 01:17:03 +0000https://feed.craftedsignal.io/briefs/2026-03-chrome-fedcm-uaf/Tue, 24 Mar 2026 01:17:03 +0000hello@craftedsignal.iohttps://feed.craftedsignal.io/briefs/2026-03-chrome-fedcm-uaf/A use-after-free vulnerability in Google Chrome's FedCM component (CVE-2026-4680) allows a remote attacker to execute arbitrary code within a sandbox by exploiting a crafted HTML page.<p>A use-after-free vulnerability, identified as CVE-2026-4680, exists in the FedCM implementation of Google Chrome. This flaw affects versions prior to 146.0.7680.165. Exploitation is possible by a remote attacker who crafts a malicious HTML page. Successful exploitation allows for arbitrary code execution within the Chrome sandbox, potentially leading to further compromise. The Chromium security team has rated this vulnerability as High severity. This issue impacts users across Windows, Linux…</p> criticaladvisoryCVE-2026-4680use-after-freechromefedcm