Google has released emergency security updates for Chrome to address CVE-2026-11645, a high-severity zero-day vulnerability currently being exploited in the wild. This flaw involves an out-of-bounds read and write issue within the V8 JavaScript engine, which is the component responsible for executing script code in the browser. Attackers can leverage specially crafted HTML pages to trigger heap corruption, potentially leading to arbitrary code execution or the exposure of sensitive data.

Source