THREAT OPS › CVEs › CVE-2026-3909
CVE-2026-3909 — Google Skia Out-of-Bounds Write Vulnerability
Google Skia contains an out-of-bounds write vulnerability that could allow a remote attacker to perform out of bounds memory access via a crafted HTML page. This vulnerability affects Google Chrome and ChromeOS, Android, Flutter, and possibly other products.
Vulnerability details
- Affected productsSkia
- KEV remediation due2026-03-27