Unrated severityNVD Advisory· Published Jul 1, 2026
Debian chromium: Insufficient policy enforcement in Canvas in Google Chrome prior to 150.0.7871.4…
CVE-2026-13840
Description
Insufficient policy enforcement in Canvas in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)
Affected products
1Patches
Vulnerability mechanics
News mentions
0No linked articles in our index yet.