Back to CVE List

CVE-2026-13921

Vulnerability Description

Insufficient validation of untrusted input in DeviceBoundSessionCredentials in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medium)

Vulnerability Details

Published Date
Last Modified
CWE ID
CWE-20
Source
NVD
Vendor
Google
Product
Chrome

External References

Discussion (0)

Add Comment

No comments yet. Be the first!