{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-4460", "assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28", "state": "PUBLISHED", "assignerShortName": "Chrome", "dateReserved": "2026-03-19T20:23:54.216Z", "datePublished": "2026-03-20T01:34:56.641Z", "dateUpdated": "2026-03-20T01:34:56.641Z"}, "containers": {"cna": {"affected": [{"vendor": "Google", "product": "Chrome", "versions": [{"version": "146.0.7680.153", "status": "affected", "lessThan": "146.0.7680.153", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "value": "Out of bounds read in Skia in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "Out of bounds read", "cweId": "CWE-125"}]}], "providerMetadata": {"orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28", "shortName": "Chrome", "dateUpdated": "2026-03-20T01:34:56.641Z"}, "references": [{"url": "https://chromereleases.googleblog.com/2026/03/stable-channel-update-for-desktop_18.html"}, {"url": "https://issues.chromium.org/issues/490254124"}]}}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Out of bounds read in Skia in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)"}], "id": "CVE-2026-4460", "lastModified": "2026-03-20T13:37:50.737", "metrics": {}, "published": "2026-03-20T02:16:39.300", "references": [{"source": "chrome-cve-admin@google.com", "url": "https://chromereleases.googleblog.com/2026/03/stable-channel-update-for-desktop_18.html"}, {"source": "chrome-cve-admin@google.com", "url": "https://issues.chromium.org/issues/490254124"}], "sourceIdentifier": "chrome-cve-admin@google.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-125"}], "source": "chrome-cve-admin@google.com", "type": "Primary"}]}

{"bugzilla": {"description": "chromium-browser: Out of bounds read in Skia", "id": "2449412", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449412"}, "csaw": false, "cvss3": {"cvss3_base_score": "6.5", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "status": "draft"}, "cwe": "CWE-125", "details": ["An out of bounds read flaw was found in the Skia component of the Chromium browser.\nUpstream bug(s):\nhttps://code.google.com/p/chromium/issues/detail?id=490254124"], "name": "CVE-2026-4460", "public_date": "2026-03-18T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2026-4460\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-4460\nhttps://chromereleases.googleblog.com/2026/03/stable-channel-update-for-desktop_18.html\nhttps://issues.chromium.org/issues/490254124"], "statement": "Red Hat Product Security rates the severity of this flaw as determined by the Google Chrome Security Advisory.", "threat_severity": "Important"}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[146.0.7680.153,146.0.7680.153)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "Chrome", "source": "cna", "vendor": "Google"}, "product": "chrome", "vendor": "google"}], "analysis": {"en": {"generated_at": "2026-03-20T03:51:10.714132+00:00", "value": {"mitigation_remediation": ["Update Google Chrome to version 146.0.7680.153 or later"], "summary": {"action": "Immediate Patch", "impact": "Information Disclosure"}, "threat_synthesis": {"affected_systems": "All Google Chrome browsers built before version 146.0.7680.153 are affected. The flaw resides in the stable channel release of the browser\u2019s Skia component; users who run an earlier build and visit a site containing malicious HTML may be exposed to the read vulnerability.", "description_and_impact": "An out\u2011of\u2011bounds read vulnerability (CWE-125) exists in the Skia graphics engine used by Google Chrome. The flaw allows a remote attacker to read arbitrary memory contents by delivering a crafted HTML page, which the browser processes when visited. Chromium classifies this defect as High severity, but the CVE description does not indicate that the read would enable a broader compromise beyond data disclosure.", "risk_and_exploitability": "The event description indicates a High severity rating, while the EPSS score is not available and the vulnerability is not included in CISA\u2019s KEV catalog. Exploitation requires only that a remote attacker serve a specially crafted web page; no authentication or privileged privileges are necessary. Consequently, the risk to ordinary Internet users who browse the web is significant, as the flaw permits the acquisition of sensitive data stored in the browser process."}}}}, "created": "2026-03-20T08:53:17.773714+00:00", "title": "Out of Bounds Memory Read in Skia via Crafted HTML Page", "updated": "2026-03-20T10:43:11.199642+00:00", "vendors": ["google", "google$PRODUCT$chrome"]}