Bug Bounty And Vuln HuntingVulnerability

Chrome Dawn use after free CVE-2026-5281 added to CISA KEV

April 1, 2026Zero Day Engineering, CISA Cyber, BleepingComputer

CISA and others highlight active exploitation of CVE-2026-5281 in Google Dawn, described as a Chrome GPU remote to elevation of privilege issue. The repeated alerts emphasize rapid patching for browser zero-days.

Open in PulseSee the full expert discussion →

QUOTES

0-Day Alert: Google Chrome GPU Remote to Elevation of Privilege exploit in the wild

CVE-2026-5281: Dawn Server Use-after-free due to improper clearing of callbacks upon DeviceInfo object destruction

We added Google Dawn use-after-free vulnerability CVE-2026-5281 to our Known Exploited Vulnerabilities Catalog.

Google has fixed the fourth Chrome vulnerability exploited in zero-day attacks since the start of the year.

VOICES

Zero Day Engineering

CISA Cyber

BleepingComputer

Pierluigi Paganini - Security Affairs

Begin n Bounty

RELATED TERMS

zero daybrowserpatchinggooglecvezero day

OTHER FINDINGS IN BUG BOUNTY AND VULN HUNTING

Axios npm supply chain attack delivering cross platform rat via compromised maintainer DarkSword/Coruna iOS exploit kits expanding beyond nation-state use LiteLLM PyPI backdoor (v1.82.7–1.82.8) tied to TeamPCP supply-chain campaign

AMYGDALA PULSE

See what experts are saying right now

This finding is one of many signals tracked across Cyber Security. The live feed updates every few hours with new expert voices, debates, and emerging ideas.

Open Cyber Security Pulse Browse all topics

← Back to Cyber Security