GHSA-hpcc-6fhx-pp2mMediumCVSS 4.3

Insufficient policy enforcement in Service Worker in Google Chrome on prior to 148.0.7778.179...

Published
May 20, 2026
Last Modified
May 20, 2026

🔗 CVE IDs covered (1)

CVE-2026-9115

📋 Description

Insufficient policy enforcement in Service Worker in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: High)

🔗 References (4)