## https://sploitus.com/exploit?id=9C72AFEA-D3D4-516B-A658-8471CFC42FAB
# CVE-2026-2441-PoC
CVE-2026-2441 PoC
Chrome CSS Use-After-Free PoC (Blink CSSFontFeatureValuesMap)
PoC triggering UAF in CSS processing โ renderer RCE inside sandbox on Chrome <=144.0.x (all platforms).
Trigger:
@font-feature-values + container-query + forced layout recalc via offsetWidth in rAF loop โ iterator invalidation frees CSSValue* while still referenced.
Chain summary:
CSSOM grooming โ UAF reclaim with fake object โ vptr overwrite โ V8 addrof/fakeobj โ arbitrary RW โ Wasm RWX page โ shellcode execution.
Usage:
Host index.html and visit, if you get an Awe Snap error then your browser is vulnerable and you should update immediately as this is being actively exploited in the wild
All credit for original PoC goes to b1gchoi