UI Spoofing Vulnerability in Google Chrome
CVE-2026-14132

Currently unrated

Key Information:

Vendor

Google

Status
Vendor
CVE Published:
30 June 2026

What is CVE-2026-14132?

A flaw in the WebXR implementation of Google Chrome prior to version 150.0.7871.47 could enable a remote attacker to create a malicious HTML page that tricks users into believing they are interacting with a legitimate interface. This situation poses a significant risk as it could lead to unauthorized actions being taken by the user under false pretenses.

Affected Version(s)

Chrome 150.0.7871.47

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.