Description
Determined not a vulnerability
Published: 2026-05-14
Score: 3.1 Low
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DSA Debian DSA DSA-6273-1 chromium security update
History

Tue, 16 Jun 2026 22:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 16 Jun 2026 22:00:00 +0000

Type Values Removed Values Added
Description Insufficient policy enforcement in AI in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to bypass Site Isolation via a crafted HTML page. (Chromium security severity: Medium) Determined not a vulnerability

Tue, 19 May 2026 15:30:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

Fri, 15 May 2026 15:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-275
CWE-276

Fri, 15 May 2026 14:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-693
Metrics cvssV3_1

{'score': 6.2, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:N/A:N'}

 ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

cvssV3_1

{'score': 3.1, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N'}

Fri, 15 May 2026 12:15:00 +0000

Type Values Removed Values Added
Title Bypass of Site Isolation via AI Policy Enforcement Flaw in Google Chrome chromium-browser: chromium-browser: Insufficient policy enforcement in AI
Weaknesses CWE-1100
References
Metrics threat_severity

None

 cvssV3_1

{'score': 6.2, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:N/A:N'}

threat_severity

Moderate

Thu, 14 May 2026 22:30:00 +0000

Type Values Removed Values Added
Title Bypass of Site Isolation via AI Policy Enforcement Flaw in Google Chrome
Weaknesses CWE-275
CWE-276

Thu, 14 May 2026 22:15:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Thu, 14 May 2026 20:15:00 +0000

Type Values Removed Values Added
Description Insufficient policy enforcement in AI in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to bypass Site Isolation via a crafted HTML page. (Chromium security severity: Medium)
References

Subscriptions

Google Chrome
cve-icon MITRE

Status: REJECTED

Assigner: Chrome

Published:

Updated: 2026-06-16T21:20:30.096Z

Reserved: 2026-05-14T05:40:24.102Z

Link: CVE-2026-8568

cve-icon Vulnrichment

Updated:

cve-icon NVD

Status : Rejected

Published: 2026-05-14T20:17:19.017

Modified: 2026-06-17T13:21:22.603

Link: CVE-2026-8568

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-05-14T19:52:32Z

Links: CVE-2026-8568 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-15T17:45:04Z

Weaknesses