Google declares an emergency After a fresh zero-day exploit, Chrome was updated.

Following the discovery of a new zero-day flaw that hackers are actively using, Google has released a new notice for its Chrome browser just days after releasing a significant security upgrade.

According to a Forbes report, the vulnerability, known as CVE-2026-5281, poses a threat to the 3.5 billion Chrome users worldwide.

Along with 20 other vulnerabilities, Google has already started releasing a new security update to address this high-severity problem.

Before the update is available to every Chrome user, it may take a few days or even weeks.

In the meanwhile, users can manually upgrade their browser to apply the fix without waiting if they want instant protection.

Regarding the CVE-2026-5281 zero-day
Chrome zero-day vulnerabilities are getting more frequent.

After CVE-2026-2441 in February and CVE-2026-3909 and CVE-2026-3910 in March, CVE-2026-5281 is the fourth zero-day patched in the first quarter of 2026 alone.

In contrast, Google only fixed eight zero-day vulnerabilities in 2025.

There are still few technical details. Srinivas Sista, a representative of Google’s Chrome team, clarified that bug details are frequently withheld until the majority of users have implemented the update.

The use-after-free memory vulnerability known as CVE-2026-5281 affects the cross-platform Dawn WebGPU component of Chrome.

When this vulnerability is exploited, specifically designed web sites may cause data corruption, browser crashes, and arbitrary code execution.