UI Spoofing Vulnerability in Google Chrome 150.0.7871.47 and Earlier
CVE-2026-14154
Currently unrated
What is CVE-2026-14154?
A vulnerability exists in Google Chrome versions prior to 150.0.7871.47 due to an inappropriate implementation in DevTools. This flaw allows attackers to exploit users who have installed malicious extensions, enabling them to execute UI spoofing attacks. By persuading users to download and activate such extensions, an attacker could manipulate the visible interface of the browser, potentially leading to unintended actions by the user or data exposure.
Affected Version(s)
Chrome 150.0.7871.47