Cross-Origin Data Leakage in Google Chrome
CVE-2026-14146

Currently unrated

Key Information:

Vendor

Google

Status
Vendor
CVE Published:
30 June 2026

What is CVE-2026-14146?

A vulnerability in Google Chrome has been identified that involves an inappropriate implementation of CSS, which can be exploited by remote attackers. By crafting a malicious HTML page, an attacker may successfully extract sensitive cross-origin data from users accessing the page, posing significant risks to privacy and data integrity. Users are advised to update to the latest version of Google Chrome to mitigate potential threats.

Affected Version(s)

Chrome 150.0.7871.47

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.