CVE-2026-15768
Description
Insufficient policy enforcement in HTML-in-Canvas in Google Chrome prior to 150.0.7871.125 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: High)
Metadata
Severity & Metrics
No CVSS data available.
Affected products (1)
| Vendor | Product | Platform | Versions |
|---|---|---|---|
| Chrome | — | 150.0.7871.125 < 150.0.7871.125 |
Weakness (CWE)
| CWE | Source | Description |
|---|---|---|
| — | cna | Insufficient policy enforcement |
References (2)