CVE-2026-8580 – Google Chrome
“Critical browser bugs are stacking up fast—and this patch shuts them down before they turn into breaches.”
Google Chrome addresses a wide set of vulnerabilities spanning 250+ critical, high, and medium severity issues across core browser components. Two vulnerabilities stand out as critical: CVE-2026-8511 and CVE-2026-8580 each have a CVSS score of 9.6, which is Critical severity. Multiple high-risk issues follow, including CVE-2026-8509 (8.8), CVE-2026-8510 (7.5), and a large cluster of vulnerabilities ranging from 8.3 to 8.8, all classified as High severity. These issues collectively increase the likelihood of browser compromise through memory corruption, sandbox escape, or other attack vectors.
Top Risks (Priority Focus)
- CVE-2026-8511 — 9.6 (Critical)
- CVE-2026-8580 — 9.6 (Critical)
These two critical vulnerabilities represent the highest risk and should be prioritized immediately.
Lower severity vulnerabilities are also present. While these pose less immediate risk individually, they contribute to the overall attack surface. No verified real-world exploitation, zero-day use, or public proof-of-concept activity has been confirmed for any of these vulnerabilities.
Key Details
- Affected Product
- Google Chrome
- Attack Vector
- Network
- Attack Complexity
- Low
- Privileges Required
- None
- User Interaction
- Required
- CWE Classification
- CWE-416