GOOGLE has issued an emergency update for Chrome to address 74 vulnerabilities, including a high-severity flaw (CVE-2026-11645) that has been exploited in the wild. This marks the fifth zero-day vulnerability for Chrome in 2026. The update includes fixes for 17 critical, 55 high-severity, and 2 medium-severity vulnerabilities, with rollouts continuing over the coming days for users on Windows, Mac, and Linux.
A security researcher received $55,000 for reporting the CVE-2026-11645 flaw, which allows remote code execution through a crafted HTML page. Google is aware of its exploitation but will restrict access to details until a majority of users are patched.