UI Spoofing Vulnerability in Google Chrome 150.0.7871.47 and Earlier
CVE-2026-14154

Currently unrated

Key Information:

Vendor

Google

Status
Vendor
CVE Published:
30 June 2026

What is CVE-2026-14154?

A vulnerability exists in Google Chrome versions prior to 150.0.7871.47 due to an inappropriate implementation in DevTools. This flaw allows attackers to exploit users who have installed malicious extensions, enabling them to execute UI spoofing attacks. By persuading users to download and activate such extensions, an attacker could manipulate the visible interface of the browser, potentially leading to unintended actions by the user or data exposure.

Affected Version(s)

Chrome 150.0.7871.47

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.