Skip to main content

Google Chrome EUVDEUVD-2026-40739

| CVE-2026-14052 MEDIUM
Improper Access Control (CWE-284)
2026-06-30 chrome-cve-admin@google.com GHSA-qfv7-g547-v6hg
4.3
CVSS 3.1 · Vendor: google
Share

Severity by source

Vendor (google) PRIMARY
4.3 MEDIUM
AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
vuln.today AI
4.3 MEDIUM

Attacker serves a crafted HTML page (AV:N, PR:N), victim must navigate to it (UI:R), impact is limited integrity bypass within the browser sandbox (I:L, C:N, A:N, S:U).

3.1 AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
4.0 AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
SUSE
MEDIUM
qualitative

Primary rating from Vendor (google).

CVSS VectorVendor: google

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
None
Integrity
Low
Availability
None

Lifecycle Timeline

4
Analysis Generated
Jul 01, 2026 - 14:34 vuln.today
CVSS changed
Jul 01, 2026 - 14:22 NVD
4.3 (MEDIUM)
CVE Published
Jun 30, 2026 - 23:17 cve.org
UNKNOWN (no severity yet)
CVE Published
Jun 30, 2026 - 23:17 cve.org
MEDIUM 4.3

DescriptionCVE.org

Insufficient policy enforcement in FileSystem in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. (Chromium security severity: Low)

AnalysisAI

FileSystem policy enforcement bypass in Google Chrome prior to version 150.0.7871.47 allows a remote attacker to circumvent discretionary access control via a crafted HTML page, resulting in limited unauthorized write operations within the browser's sandboxed filesystem scope. The vulnerability requires user interaction - the victim must navigate to a malicious page - and produces only an integrity impact (I:L) with no confidentiality or availability consequence. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Host crafted HTML page on attacker-controlled domain
Delivery
Socially engineer victim into visiting the page
Exploit
Trigger insufficient FileSystem policy check on page load
Execution
Bypass discretionary access control within browser FileSystem sandbox
Impact
Write unauthorized data to sandboxed filesystem scope

Vulnerability AssessmentAI

Exploitation Exploitation requires the victim to actively navigate to a crafted HTML page hosted by the attacker (UI:R per CVSS vector) - passive exposure such as receiving an email or seeing an ad is insufficient without a click-through to the malicious URL. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 base score of 4.3 (AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N) reflects a low-complexity network-reachable flaw that nonetheless requires victim interaction and delivers only a limited integrity impact - no confidentiality or availability consequence, and scope remains unchanged within the browser sandbox. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker registers a malicious domain and serves a crafted HTML page that leverages the FileSystem API policy gap to write data outside the origin's normally authorized sandbox scope. The attacker then conducts a phishing or malvertising campaign to lure Chrome users into visiting the page, triggering the access control bypass upon page load with no further interaction required beyond navigation. …
Remediation The primary fix is upgrading Google Chrome to version 150.0.7871.47 or later via Chrome's built-in update mechanism or through enterprise management tooling; the stable channel advisory is at http://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0175352312.html. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

Vendor StatusVendor

SUSE

Severity: Moderate
Product Status
SUSE Package Hub 15 SP7 Fixed
openSUSE Tumbleweed Fixed
SUSE Package Hub 15 SP7 Affected

Share

EUVD-2026-40739 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy