GHSA-3fwf-96rh-jr6wLowCVSS 3.1

Insufficient policy enforcement in Network in Google Chrome on Android prior to 148.0.7778.168...

Published
May 14, 2026
Last Modified
May 15, 2026

🔗 CVE IDs covered (1)

CVE-2026-8572

📋 Description

Insufficient policy enforcement in Network in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)

🔗 References (4)