Google has patched a use-after-free vulnerability (CVE-2026-5281) in the Dawn WebGPU component of Chrome, which is known to have been exploited in the wild. The article provides no CVSS score, affected version ranges, or specific fixed version number. IT administrators should apply Google's latest Chrome security update immediately.
Google has fixed 21 vulnerabilities affecting its popular Chrome browser, among them a zero-day (CVE-2026-5281) with an in-the-wild exploit. About CVE-2026-5281 As per usual, information about the fixed zero-day is limited, and there’s no details about the exploit (or how/if it’s being used by attackers). CVE-2026-5281’s official description says it’s a use-after-free (UAF) vulnerability in Dawn, an open-source and cross-platform implementation of the WebGPU standard that’s used in Chromium and Chromium-based browsers. The vulnerability affects … More → The post Google fixes Chrome zero-day with in-the-wild exploit (CVE-2026-5281) appeared first on Help Net Security .