Insufficient Input Validation in Google Chrome Affects Renderer Process
CVE-2026-12453

Currently unrated

Key Information:

Vendor: Google
Status: Chrome
Vendor: CVE Published:; 17 June 2026

What is CVE-2026-12453?

A vulnerability in Google Chrome prior to version 149.0.7827.155 allows remote attackers to manipulate the renderer process. By exploiting insufficient validation of untrusted input through a specially crafted HTML page, an attacker can bypass the same origin policy, posing significant risk to user data and system integrity.

Affected Version(s)

Chrome 149.0.7827.155

References

https://chromereleases.googleblog.com/2026/06/stable-chan...

https://issues.chromium.org/issues/516448843

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 17, 2026
Vulnerability Reserved
Jun 16, 2026

CVE-2026-12453 Data

JSON