UI Spoofing Vulnerability in Google Chrome by Google
CVE-2026-7998

Currently unrated

Key Information:

Vendor: Google
Status: Chrome
Vendor: CVE Published:; 6 May 2026

What is CVE-2026-7998?

A vulnerability exists in Google Chrome that allows a remote attacker to perform UI spoofing through insufficient validation of untrusted input. This can be exploited by using a specially crafted HTML page to compromise the renderer process, potentially leading to misleading user interfaces and compromising user actions. Users are advised to update to the latest version to protect against this security risk.

Affected Version(s)

Chrome 148.0.7778.96

References

https://chromereleases.googleblog.com/2026/05/stable-chan...

https://issues.chromium.org/issues/491676472

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 6, 2026
Vulnerability Reserved
May 5, 2026

CVE-2026-7998 Data

JSON