Critical Chrome Security Update Required to Address Active Zero-Day Vulnerability
Chrome users must prioritize installing the latest security update as Google has released an urgent fix for a zero-day vulnerability currently being exploited by attackers. The company has also identified another zero-day flaw that will be addressed in an upcoming release.
Zero-day vulnerabilities represent particularly dangerous security flaws because they are actively exploited by malicious actors before developers can create and distribute protective patches. The current Chrome vulnerabilities mark the second and third zero-day exploits discovered in 2026, following an initial security flaw that Google addressed in February.
Details of the Current Security Flaw
The vulnerability being patched is designated CVE-2026-3910 and involves an improper implementation within V8, which serves as Google’s JavaScript and WebAssembly processing engine. Google’s Threat Analysis Group discovered and reported this security issue on March 10, though the company has not disclosed specific information about how attackers have been exploiting the vulnerability.
Originally, Google intended to address a second zero-day vulnerability, identified as CVE-2026-3909, in this same update. This additional flaw involves an out-of-bounds write issue within Skia, the 2D graphics library. When successfully exploited, this vulnerability could allow attackers to crash the Chrome browser or execute malicious code remotely. However, the fix for this second vulnerability has been postponed to a future update.
Required Actions for Chrome Users
Google published the Stable Channel update on March 12, requiring users to upgrade to the most recent Chrome version: 146.0.7680.75/76 for Windows and Mac systems, and 146.0.7680.75 for Linux platforms. The rollout process may extend over several days or weeks, so users should install the update immediately upon availability. Users can verify their current version by navigating to Chrome menu > About Google Chrome.
For users who routinely close and reopen their browser, the update will install automatically. Alternatively, manual installation is possible by clicking the three-dot menu icon in the browser’s upper-right corner. Chrome must be restarted to complete the update process.