Severity by source
AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
AC:H reflects the hard prerequisite of a pre-compromised renderer; S:C captures the site isolation boundary crossing inherent in a GuestView policy bypass reaching cross-origin contexts.
Primary rating from Vendor (google).
CVSS VectorVendor: google
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Lifecycle Timeline
4DescriptionCVE.org
Insufficient policy enforcement in GuestView in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: Medium)
AnalysisAI
GuestView policy enforcement in Google Chrome prior to 150.0.7871.47 can be subverted by an attacker who has already achieved renderer process compromise, allowing site isolation to be bypassed via a crafted HTML page. The flaw (CWE-602: Client-Side Enforcement of Server-Side Security) enables manipulation of cross-origin content or policy in embedded browsing contexts that Chrome's site isolation architecture is designed to protect. …
Unlock full vulnerability intelligence
- Risk assessment & exploitation conditions
- Attack chain visualization
- Remediation with exact patch versions
- Threat intelligence from 22 sources
- Personal watchlist & email alerts
Free forever · No credit card required
Attack ChainAIDerived
Hypothetical attack flow derived from CVE metadata
Vulnerability AssessmentAI
| Exploitation | Exploitation has an explicit hard prerequisite: the attacker must have already compromised the Chrome renderer process before this vulnerability is reachable - this is stated directly in the CVE description ('remote attacker who had compromised the renderer process'). … Additional conditions and limiting factors are described in the full assessment. |
| Risk Assessment | Real-world exploitation risk is substantially constrained by the hard prerequisite that the attacker must have already compromised the Chrome renderer process before this vulnerability is reachable. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in. |
| Exploit Scenario | An attacker first exploits a separate Chromium vulnerability - such as a V8 engine memory corruption or type confusion bug - to gain code execution inside the Chrome renderer process. From that foothold, they serve the victim a crafted HTML page that abuses GuestView's insufficient policy enforcement to cross site isolation boundaries, enabling manipulation of cross-origin content or security policy that would normally be blocked. … |
| Remediation | Update Google Chrome to version 150.0.7871.47 or later immediately; this version is confirmed by the official Chrome stable channel advisory at chromereleases.googleblog.com to contain the fix. … Detailed patch versions, workarounds, and compensating controls in full report. |
Threat intelligence, references, and detailed analysis are available after sign-in.
Same technique Authentication Bypass
View allVendor StatusVendor
SUSE
Severity: Moderate| Product | Status |
|---|---|
| SUSE Package Hub 15 SP7 | Fixed |
| openSUSE Tumbleweed | Fixed |
| SUSE Package Hub 15 SP7 | Affected |
Share
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-40557
GHSA-mrqm-jvh8-pw4f