Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Google Chrome zero-day patch (CVE-2026-2441)

Security Patch Release
First reported
Last updated
Happening score
H score 56
1 unique sources, 1 articles

Summary

Hide ▲

Google released a security update for Chrome on Windows, Mac, and Linux to fix CVE-2026-2441, a zero-day with a reported in-the-wild exploit. The patch matters because the flaw could let a remote attacker reach arbitrary code execution through a crafted HTML page. Google also limited bug details until most users are updated.

Related Happenings

Google overhauls Android and Chrome bug bounty programs

Commercial Activity
First: 05.05.2026 14:24 Last: 05.05.2026 14:24 Sources 1

About this happening: **Google** overhauls its **Android and Chrome** vulnerability rewards programs, reshaping payout tiers for **exploit research** and raising top rewards to **$1.5 million**. The ch...

Open Happening

Google Antigravity prompt-injection fix

Security Patch Release
First: 21.04.2026 13:52 Last: 21.04.2026 13:52 Sources 1

About this happening: **Google** fixed **Antigravity**'s **prompt injection flaw** in **February**, closing a path that could lead to **sandbox escape** and **remote code execution (RCE)**. The patch f...

Open Happening

Nginx-ui 2.3.4 patch for CVE-2026-33032

Security Patch Release
First: 15.04.2026 16:00 Last: 15.04.2026 16:00 Sources 1

About this happening: **nginx-ui maintainers** shipped **version 2.3.4** to fix **CVE-2026-33032**, closing a critical security gap for **MCP-enabled** deployments. The patch matters because the flaw c...

Latest development: 15.04.2026 17:45

After Pluto Security disclosed the issue in **March 2026**, the maintainers shipped **version 2.3.4** to address **CVE-2026-33032**. The patch closed the vulnerability in the product's **AI (MCP) integration** before broader exploitation details were reported.

Open Happening

Google security patch release for CVE-2026-5858

Security Patch Release
First: 10.04.2026 13:44 Last: 10.04.2026 13:44 Sources 1

About this happening: **Google** released the first stable **Chrome 147** build, closing **60 vulnerabilities** and raising the browser’s baseline security ahead of broader deployment. The patch bundle...

Open Happening

Google Chrome 146 adds Device Bound Session Credentials to block session-cookie theft

Security Tool/Service
First: 09.04.2026 21:33 Last: 09.04.2026 21:33 Sources 1

About this happening: Google has rolled out **Device Bound Session Credentials (DBSC)** in **Chrome 146 for Windows**, binding sessions to device hardware to blunt **infostealer malware** that steals s...

Open Happening

Timeline

  1. 13.02.2026 02:00 2 articles · 3mo ago

    Google releases a Chrome security update for CVE-2026-2441

    Mitigation Patch Update

    Google publishes a security update on February 13 for CVE-2026-2441 and says it is aware that an exploit for the bug exists in the wild, while restricting bug details until most users are updated with a fix. The update covers Google Chrome for desktop on Windows, Mac and Linux and addresses a high severity CSS issue linked to a crafted HTML page.

    Show sources
    Open in new tab
  2. 11.02.2026 02:00 1 articles · 3mo ago

    Shaheen Fazim reports CVE-2026-2441 in Google Chrome

    Initial Disclosure

    Security researcher Shaheen Fazim reports CVE-2026-2441 on February 11, identifying a Chrome zero-day that affects Google Chrome for desktop on Windows, Mac and Linux and can enable arbitrary code execution inside a sandbox through a crafted HTML page.

    Show sources
    Open in new tab