Insufficient Input Validation Vulnerability in Google Chrome by Google
CVE-2026-7360

Currently unrated

Key Information:

Vendor: Google
Status: Chrome
Vendor: CVE Published:; 28 April 2026

What is CVE-2026-7360?

A vulnerability exists in Google Chrome due to insufficient validation of untrusted input within the compositing process. This flaw allows a remote attacker to potentially bypass site isolation protections by leveraging a crafted HTML page. If an attacker compromises the renderer process, they could exploit this weakness to execute malicious actions, making it essential for users to keep their browsers updated to the latest version.

Affected Version(s)

Chrome 147.0.7727.138

References

https://chromereleases.googleblog.com/2026/04/stable-chan...

https://issues.chromium.org/issues/495852034

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 28, 2026
Vulnerability Reserved
Apr 28, 2026

CVE-2026-7360 Data

JSON