UI Spoofing Vulnerability in Google Chrome WebApp
CVE-2026-8019

Currently unrated

Key Information:

Vendor: Google
Status: Chrome
Vendor: CVE Published:; 6 May 2026

What is CVE-2026-8019?

A vulnerability in Google Chrome's WebApp component prior to version 148.0.7778.96 allows remote attackers to exploit insufficient policy enforcement, leading to UI spoofing through specially crafted HTML pages. This may mislead users into believing they are interacting with legitimate content, potentially compromising sensitive information.

Affected Version(s)

Chrome 148.0.7778.96

References

https://chromereleases.googleblog.com/2026/05/stable-chan...

https://issues.chromium.org/issues/498353173

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 6, 2026
Vulnerability Reserved
May 5, 2026

CVE-2026-8019 Data

JSON