Skip to main content

Google Chrome CVE-2026-14089

| EUVDEUVD-2026-40776 MEDIUM
Improper Input Validation (CWE-20)
2026-06-30 chrome-cve-admin@google.com GHSA-92hw-39hg-4r93
4.3
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
4.3 MEDIUM
AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
vuln.today AI
3.1 LOW

Renderer compromise is a non-trivial chained prerequisite raising AC to H; UI spoofing yields only low integrity impact with no C or A.

3.1 AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N
4.0 AV:N/AC:H/AT:P/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
SUSE
MEDIUM
qualitative

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
None
Integrity
Low
Availability
None

Lifecycle Timeline

4
Analysis Generated
Jul 01, 2026 - 16:35 vuln.today
CVSS changed
Jul 01, 2026 - 16:22 NVD
4.3 (MEDIUM)
CVE Published
Jun 30, 2026 - 23:17 cve.org
UNKNOWN (no severity yet)
CVE Published
Jun 30, 2026 - 23:17 cve.org
MEDIUM 4.3

DescriptionNVD

Insufficient validation of untrusted input in PopupBlocker in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

AnalysisAI

UI spoofing in Google Chrome's PopupBlocker component (all versions prior to 150.0.7871.47) enables a remote attacker who has already compromised the Chrome renderer process to manipulate browser UI elements through a crafted HTML page. The integrity impact is limited to UI deception - no code execution, credential theft, or availability impact is possible through this flaw alone. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Recon
Deliver crafted page to victim browser
Delivery
Exploit separate renderer vulnerability
Exploit
Achieve code execution in sandboxed renderer
Install
Craft malicious IPC messages to PopupBlocker
C2
Bypass insufficient input validation
Execute
Render spoofed browser UI to victim
Impact
Deceive user via fake trusted dialog

Vulnerability AssessmentAI

Exploitation Exploitation requires that the attacker has already achieved code execution within Chrome's renderer process via a separate, independent vulnerability - this is a hard prerequisite explicitly stated in the CVE description ('remote attacker who had compromised the renderer process'). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The NVD CVSS 4.3 (AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N) scores the outer attack surface but does not fully capture the material prerequisite disclosed in the description: renderer process compromise. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker who has separately exploited a memory-corruption vulnerability to gain code execution inside Chrome's sandboxed renderer process then delivers a crafted HTML page that sends malformed IPC messages to the PopupBlocker in the browser process. The insufficient input validation allows the attacker to inject spoofed browser UI chrome - such as a fake address bar, permission prompt, or trusted-site dialog - potentially deceiving the victim into disclosing credentials or approving a sensitive action. …
Remediation Upgrade Google Chrome to version 150.0.7871.47 or later, which contains the vendor-released patch per Google's stable channel update advisory at http://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0175352312.html. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

Vendor StatusVendor

SUSE

Severity: Moderate
Product Status
SUSE Package Hub 15 SP7 Fixed
openSUSE Tumbleweed Fixed
SUSE Package Hub 15 SP7 Affected

Share

CVE-2026-14089 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy