Insufficient Policy Enforcement in Google Chrome by Google
CVE-2026-14155

Currently unrated

Key Information:

Vendor

Google

Status
Vendor
CVE Published:
30 June 2026

What is CVE-2026-14155?

A vulnerability in Google Chrome affects versions prior to 150.0.7871.47 due to insufficient policy enforcement in the StorageAccessAPI. This flaw enables an attacker to leak cross-origin data by utilizing a specially crafted HTML page. The potential for exploitation underscores the need for users to ensure they are running the latest version of Chrome to safeguard against such data leakage issues.

Affected Version(s)

Chrome 150.0.7871.47

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.