Use-after-free in Dawn WebGPU engine in Chrome. Affects all Chromium-based browsers. Exploited in-the-wild for drive-by download campaigns.
| CVE ID | CVE-2026-5281 |
| Vendor | |
| Affected Product | Chrome |
| Vulnerability Type | Use-After-Free |
| CVSS Score | 8.8 (HIGH) |
| Actively Exploited | ✅ Yes — CISA KEV Listed |
| Patch Available | Chrome 124.0.6367.82 |
| Reported By | CYBERDUDEBIVASH SENTINEL APEX Intelligence |
Sigma rules, YARA signatures, IOC table, and SIEM queries for Splunk, Elastic, Sentinel, and Chronicle — deployable in 5 minutes.