CVE-2026-2441: Chrome's First Zero-Day of 2026 — CSS Use-After-Free Exploited in the Wild

Feb 27 · 5 min read · They Weaponized CSS Google just patched Chrome's first actively exploited zero-day of 2026, and the attack vector is something most security teams don't even monitor: CSS rendering. CVE-2026-2441 is a use-after-free vulnerability in Chrome's CSS engi...