CVE-2026-5281HIGH · 8.8TrackedCISA KEV

Google · Dawn

Google Dawn contains an use-after-free vulnerability that could allow a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML page. This vulnerability could affect multiple Chromium-based products including, but not limited to, Google Chrome, Microsoft Edge, and Opera.

Disclosed

2026-04-01

70 days ago

Status

no honeypot capture yet

on CISA KEV — watching

7-day events

across 0 distinct IPs

7-day spread

0 ASN · 0 cty

0 active days

Top ASNs

No events captured yet.

Top countries

No events captured yet.

References

https://chromereleases.googleblog.com/2026/03/stable-channel-update-for-desktop_31.html
https://nvd.nist.gov/vuln/detail/CVE-2026-5281

↗ NVD ↗ CISA KEV ↗ Search analyses