THREATOPS
THREAT OPSCVEs › CVE-2026-3909

CVE-2026-3909 — Google Skia Out-of-Bounds Write Vulnerability

CISA KEVExploited: confirmedGoogle

Google Skia contains an out-of-bounds write vulnerability that could allow a remote attacker to perform out of bounds memory access via a crafted HTML page. This vulnerability affects Google Chrome and ChromeOS, Android, Flutter, and possibly other products.

Vulnerability details

Related reporting