Skip to main content

Google Chrome CVE-2026-13894

| EUVDEUVD-2026-40580 MEDIUM
Client-Side Enforcement of Server-Side Security (CWE-602)
2026-06-30 chrome-cve-admin@google.com GHSA-q24w-fgf9-jwgv
6.5
CVSS 3.1 · Vendor: google
Share

Severity by source

Vendor (google) PRIMARY
6.5 MEDIUM
AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
vuln.today AI
5.3 MEDIUM

Privileged network position (MITM) prerequisite maps to AC:H; all other metrics align with the vendor vector.

3.1 AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N
4.0 AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
SUSE
MEDIUM
qualitative

Primary rating from Vendor (google).

CVSS VectorVendor: google

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
None
Integrity
High
Availability
None

Lifecycle Timeline

4
Analysis Generated
Jul 01, 2026 - 18:28 vuln.today
CVSS changed
Jul 01, 2026 - 18:22 NVD
6.5 (MEDIUM)
CVE Published
Jun 30, 2026 - 23:17 cve.org
MEDIUM 6.5
CVE Published
Jun 30, 2026 - 23:17 cve.org
UNKNOWN (no severity yet)

DescriptionCVE.org

Insufficient policy enforcement in Network in Google Chrome prior to 150.0.7871.47 allowed an attacker in a privileged network position to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium)

AnalysisAI

Navigation restriction bypass in Google Chrome prior to 150.0.7871.47 enables a network-positioned attacker to circumvent browser-enforced navigation policies via a crafted HTML page. The attacker must occupy a privileged network position (e.g., man-in-the-middle) and requires user interaction with the malicious page, per the CVSS UI:R and the description's explicit network-position prerequisite. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Attain privileged network position (MITM/rogue AP)
Delivery
Intercept victim HTTP traffic
Exploit
Inject crafted HTML page into response
Execution
Victim Chrome renders malicious page (UI:R)
Persist
Network policy enforcement bypassed
Impact
Browser redirected to navigation-restricted target

Vulnerability AssessmentAI

Exploitation Exploitation requires the attacker to occupy a privileged network position relative to the victim - specifically the ability to intercept, inject, or manipulate HTTP/HTTPS traffic between the victim and the network, achievable via ARP poisoning, a rogue Wi-Fi access point, BGP route manipulation, or similar MITM technique. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 vector AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N assigns High Integrity impact with no Confidentiality or Availability impact, consistent with a navigation bypass where an attacker redirects or manipulates browser navigation to otherwise-restricted destinations. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker positioned on the same network segment as the target - for example via ARP spoofing on a shared Wi-Fi network or by operating a rogue access point - intercepts or injects HTTP traffic toward the victim's Chrome browser. The attacker delivers a crafted HTML page that triggers Chrome's insufficient network policy enforcement, causing the browser to bypass navigation restrictions and redirect the user to otherwise-blocked destinations. …
Remediation Update Google Chrome to version 150.0.7871.47 or later, available via the Chrome stable channel update documented at https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0175352312.html. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

Vendor StatusVendor

SUSE

Severity: Moderate
Product Status
SUSE Package Hub 15 SP7 Fixed
openSUSE Tumbleweed Fixed
SUSE Package Hub 15 SP7 Affected

Share

CVE-2026-13894 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy