CVE-2026-5281 is a use-after-free in Google Dawn (the Chromium WebGPU engine) that functions as a sandbox escape in a chained browser exploit, requiring an initial renderer compromise followed by exploitation of this flaw to achieve arbitrary code execution on the host OS. CISA has added this to the KEV catalog with a federal remediation deadline of April 15, 2026, confirming active exploitation. All Chromium-based browsers — including Chrome, Microsoft Edge, Opera, and Brave — are potentially in scope; organizations should enforce browser patching via endpoint management tooling and monitor for anomalous child process spawning from browser renderer processes as a behavioral detection signal.