Description
Inappropriate implementation in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)
Published:
2026-07-01
Score:
n/a
EPSS:
n/a
KEV:
No
Impact:
n/a
Action:
n/a
Analysis and contextual insights are available on OpenCVE Cloud.
Remediation
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
Advisories
No advisories yet.
References
History
Thu, 02 Jul 2026 03:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | UI Spoofing in Skia via Crafted HTML in Google Chrome before 150.0.7871.46 | |
| First Time appeared |
Google
Google chrome |
|
| Weaknesses | CWE-784 CWE-83 |
|
| Vendors & Products |
Google
Google chrome |
Wed, 01 Jul 2026 22:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Inappropriate implementation in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low) | |
| References |
|
Status: PUBLISHED
Assigner: Chrome
Published:
Updated: 2026-07-01T22:21:39.904Z
Reserved: 2026-07-01T21:37:30.822Z
Link: CVE-2026-14410
No data.
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-02T03:00:05Z