Insufficient Input Validation in Google Chrome for Linux
CVE-2026-15769

8.3HIGH

Key Information:

Vendor

Google

Status
Vendor
CVE Published:
14 July 2026

What is CVE-2026-15769?

A vulnerability in Google Chrome for Linux was identified due to insufficient validation of untrusted input within the Linux Toolkit Theming component. This flaw could allow a malicious actor, who manages to compromise the renderer process, to execute a sandbox escape by exploiting a specially crafted HTML page. Users are encouraged to update to the latest version to mitigate this risk.

Affected Version(s)

Chrome 150.0.7871.125

References

CVSS V3.1

Score:
8.3
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.