Cross-Origin Data Leak in Google Chrome DevTools
CVE-2026-14118
Currently unrated
What is CVE-2026-14118?
A vulnerability in Google Chrome's DevTools prior to version 150.0.7871.47 allows remote attackers to exploit insufficient data validation. By convincing users to engage in certain UI interactions, attackers can leak sensitive cross-origin data via specially crafted HTML pages. This issue highlights the importance of robust data handling and user interaction validation in browser development to prevent unauthorized data access.
Affected Version(s)
Chrome 150.0.7871.47