CVE-2026-7986 Autofill Vulnerability Fixed in Chrome 148 and Microsoft Edge
Google and Microsoft jointly disclosed a medium-severity flaw in the Chromium Autofill engine on May 6, 2026. Tracked as CVE-2026-7986, the bug was patched in Google Chrome 148.0.7778.96 and later,...
Claude + darktable MCP Bridge Lets You Edit RAW Photos via Chat, No Adobe Lock-In
The open-source community has fired a shot across Adobe's bow. A developer writing for MakeUseOf has released an experimental bridge that lets Anthropic's Claude AI control darktable, the free and...
CVE-2026-7983: Chromium Dawn Bug Lets Attackers Leak Cross-Origin Data via WebGPU
A medium-severity vulnerability in the Chromium Dawn graphics component could allow attackers to leak cross-origin data through crafted HTML pages, according to disclosures from Google and Microsoft...
Update Chrome and Edge Now to Fix CVE-2026-7982 WebCodecs Memory Leak
Google and Microsoft simultaneously disclosed CVE-2026-7982 on May 6, 2026—a medium-severity information disclosure vulnerability rooted in the WebCodecs API of Chromium. Patched in Google Chrome...
Chrome 148 Patches High-Severity WebRTC CVE-2026-7987 on Windows
Google has issued an urgent patch for Chrome on Windows, fixing a use-after-free vulnerability in the WebRTC component that could allow remote code execution within the browser’s sandbox. Disclosed...
Google and Microsoft Patch Chromium DataTransfer Drag-and-Drop Flaw in Chrome 148
Google and Microsoft jointly disclosed CVE-2026-7989 on May 6, 2026, detailing a medium-severity vulnerability in Chromium's DataTransfer implementation. The flaw, fixed in Chrome before version...
Critical Chromium CVE-2026-7992 Allows Linux RCE Via UI Input Flaw
Google has disclosed a critical Chromium vulnerability tracked as CVE-2026-7992 that allows remote code execution (RCE) on Linux and ChromeOS systems via a maliciously crafted web page. The flaw,...
Patch Chrome Now: CVE-2026-7990 LPE Gives SYSTEM Access on Windows
Google pushed out a critical security update for its Chrome browser on May 6, 2026, addressing a local privilege escalation (LPE) vulnerability in the Chrome Updater component for Windows. Tracked as...
Microsoft’s AI Help Desk for 300K Staff: Efficiency Win or Governance Risk?
Microsoft has quietly deployed an internal AI-powered support agent to more than 300,000 employees and vendors across 103 countries and regions, marking one of the largest enterprise rollouts of a...
Update Chrome/Edge now: CVE-2026-7988 WebRTC bug enables remote code execution
Google and Microsoft have both confirmed a critical vulnerability in the WebRTC component of Chromium-based browsers, tracked as CVE-2026-7988. The flaw, a type-confusion bug, was disclosed on May 6,...
CVE-2026-7991: Chrome UI Use-After-Free Exploit Forces Urgent Windows Patch to Version 148
Google has patched a zero-day use-after-free vulnerability in Chrome's user interface that could enable code execution inside the browser's sandbox, marking the sixth actively exploited Chrome bug...
CVE-2026-7996: Chrome SSL UI Spoofing Patch Lands in Microsoft Edge 148
Microsoft Edge users on Windows should update immediately to version 148 or later to close a low-severity Chromium vulnerability tracked as CVE-2026-7996. The flaw, which Google fixed in Chrome...