CVE-2026-13948
Description
Insufficient policy enforcement in Extensions in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extension to perform UI spoofing via a crafted Chrome Extension. (Chromium security severity: Medium)
Metadata
Severity & Metrics
No CVSS data available.
Affected products (1)
| Vendor | Product | Platform | Versions |
|---|---|---|---|
| Chrome | — | 150.0.7871.47 < 150.0.7871.47 |
Weakness (CWE)
| CWE | Source | Description |
|---|---|---|
| — | cna | Insufficient policy enforcement |
References (2)