Unrated severityNVD Advisory· Published Jul 1, 2026
Debian chromium: Insufficient policy enforcement in WebXR in Google Chrome on Android prior to 15…
CVE-2026-13910
Description
Insufficient policy enforcement in WebXR in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)
Affected products
2- Range: <150.0.7871.47
Patches
Vulnerability mechanics
News mentions
0No linked articles in our index yet.