Google patches Chrome zero-day exploited in the wild (CVE-2026-11645)

Key Points:

• CVE-2026-11645 is a high-severity zero-day vulnerability in Chrome's V8 JavaScript engine, allowing remote code execution via crafted HTML.
• The vulnerability affects Chrome on Windows, macOS, and Linux, with active exploitation reported in the wild.
• Users are advised to update their Chrome browsers to version 149.0.7827.102/.103 as soon as possible to mitigate the risk.

Technical Details: CVE-2026-11645 is classified as an out-of-bounds read and write vulnerability that can be exploited by attackers to execute arbitrary code within the browser's sandbox environment.

MITRE ATT&CK Techniques: None mentioned

IOCs Mentioned: None mentioned