A vulnerability classified as critical has been found in mesa3d Mesa up to 25.3.5/26.0.0 . This vulnerability affects unknown code of the component WebGPU . The manipulation leads to out-of-bounds write. This vulnerability is documented as CVE-2026-40393 . The attack can be initiated remotely. There is not any exploit available. It is recommended to upgrade the affected component.