Severity by source
AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:L
Attack delivered via crafted network page (AV:N) but requires specific gesture sequence (AC:H); no attacker auth needed (PR:N); active user participation mandatory (UI:R); impact limited to UI deception affecting integrity and minor availability, no data disclosure.
Primary rating from Vendor (google).
CVSS VectorVendor: google
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:L
Lifecycle Timeline
4DescriptionCVE.org
Inappropriate implementation in iOSWeb in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)
AnalysisAI
UI spoofing in Google Chrome's iOSWeb component on iOS allows remote attackers to misrepresent interface elements to users running versions prior to 150.0.7871.47. The vulnerability, rooted in an inappropriate implementation (CWE-451), is triggered when a user performs specific UI gestures on a crafted HTML page, enabling spoofing of security-critical browser interface elements such as the address bar or permission dialogs. …
Unlock full vulnerability intelligence
- Risk assessment & exploitation conditions
- Attack chain visualization
- Remediation with exact patch versions
- Threat intelligence from 22 sources
- Personal watchlist & email alerts
Free forever · No credit card required
Attack ChainAIDerived
Hypothetical attack flow derived from CVE metadata
Vulnerability AssessmentAI
| Exploitation | Exploitation requires the victim to be running Google Chrome specifically on iOS - this flaw does not affect Chrome on desktop platforms or other iOS browsers using WebKit directly. … Additional conditions and limiting factors are described in the full assessment. |
| Risk Assessment | The CVSS 3.1 base score of 4.2 (Medium) reflects limited but real impact: AV:N confirms the attack is network-deliverable via a hosted page, but AC:H indicates specific conditions - convincing a user to execute precise UI gesture sequences - must be met before exploitation succeeds. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in. |
| Exploit Scenario | An attacker crafts a malicious HTML page exploiting the iOSWeb gesture-handling flaw and delivers it to iOS Chrome users via phishing links or malicious advertisements. When a victim opens the page and is socially engineered into performing specific touch gestures - such as a sequence of taps or swipes - the page triggers the UI spoofing mechanism, potentially rendering a fraudulent address bar or permission dialog that misrepresents the page's origin or security state. … |
| Remediation | Vendor-released patch: Chrome 150.0.7871.47 for iOS. … Detailed patch versions, workarounds, and compensating controls in full report. |
Threat intelligence, references, and detailed analysis are available after sign-in.
Same technique Information Disclosure
View allVendor StatusVendor
SUSE
Severity: Moderate| Product | Status |
|---|---|
| SUSE Package Hub 15 SP7 | Fixed |
| openSUSE Tumbleweed | Fixed |
| SUSE Package Hub 15 SP7 | Affected |
Share
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-40593
GHSA-v68w-64jw-rfjj