WebXR Flaw Hits 4 Billion Chromium Users, Update Your Browser Now

Cybersecurity startup AISLE discovered a Medium severity flaw in the WebXR component of Chrome, Edge, and other Chromium browsers. Over 4 billion devices were at risk. Update now.

A serious security vulnerability in the underlying technology for most of the world’s web was recently discovered in the underlying code for most of the world’s web browsers, putting over 4 billion devices at risk of a data leak.

Autonomous security specialist AISLE discovered this flaw and rated it Medium severity (4.3). It affects all major browsers built on the Chromium code base, including Google Chrome, Microsoft Edge, Brave, and Opera.

The WebXR Leak

The problem lies in WebXR, a tool that allows websites to run Virtual Reality (VR) and Augmented Reality (AR) experiences directly in your browser. AISLE’s autonomous analyser found the flaw in October 2025, confirming it had been hidden in the code for seven months ...