Cross-Origin Data Leak in Google Chrome DevTools
CVE-2026-14118

Currently unrated

Key Information:

Vendor

Google

Status
Vendor
CVE Published:
30 June 2026

What is CVE-2026-14118?

A vulnerability in Google Chrome's DevTools prior to version 150.0.7871.47 allows remote attackers to exploit insufficient data validation. By convincing users to engage in certain UI interactions, attackers can leak sensitive cross-origin data via specially crafted HTML pages. This issue highlights the importance of robust data handling and user interaction validation in browser development to prevent unauthorized data access.

Affected Version(s)

Chrome 150.0.7871.47

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.