Sanitization Bypass Issue in Angular Framework by Google
CVE-2026-50557

5.3MEDIUM

Key Information:

Vendor

Angular

Status
Angular
Vendor
CVE Published:
22 June 2026

What is CVE-2026-50557?

A flaw in the @angular/compiler and @angular/core packages allows attackers to bypass required sanitization of elements and attributes by using specific namespace techniques. This vulnerability affects templates that process namespaced script elements, such as svg:script, which were not adequately parsed by Angular's template compiler. As a result, malicious scripts embedded within these namespace elements can evade Angular’s security mechanisms, potentially enabling client-side cross-site scripting (XSS) attacks. This issue is addressed in version 22.0.0-rc.2, 21.2.15, 20.3.22, and 19.2.22.

Affected Version(s)

angular >= 21.0.0-next.0 < 21.2.15 < 21.0.0-next.0 21.2.15

angular >= 22.0.0-next.0 < 22.0.0-rc.2 < 22.0.0-next.0 22.0.0-rc.2

angular >= 20.0.0-next.0 < 20.3.22 < 20.0.0-next.0 20.3.22

References

https://github.com/angular/angular/security/advisories/GH...
x_refsource_CONFIRM
https://github.com/angular/angular/pull/68689
x_refsource_MISC
https://github.com/angular/angular/pull/68868
x_refsource_MISC

CVSS V4

Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.