NVD disclosure day

Published threat advisories for March 13, 2026

CVE advisoryKnown Exploit

CVE-2026-3910

Google Chrome could allow an external attacker to run malicious code on user devices.

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

An external attacker can compromise Google Chrome and Chromium-based browsers by luring users to a malicious website. This vulnerability allows the attacker to run unauthorized code on user devices, potentially leading to credential theft and unauthorized access to sensitive company data.

NVD published: • CISA KEV
CVE advisoryKnown Exploit

CVE-2026-3909

Google Chrome could allow an external attacker to run malicious code via a web page.

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

An external attacker can compromise a computer and access sensitive data by tricking a user into visiting a malicious website in Google Chrome. This could allow them to run unauthorized code, leading to a full system compromise.

NVD published: • CISA KEV