CVE-2026-3937

Опубликовано: 11 мар. 2026

Источник: debian

EPSS Низкий

Описание

Incorrect security UI in Downloads in Google Chrome on Android prior to 146.0.7680.71 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
chromium	fixed	146.0.7680.71-1		package
chromium	end-of-life		bullseye	package

EPSS

Процентиль: 8%

0.00028

Низкий

Связанные уязвимости

CVE-2026-3937

CVSS3: 6.5

nvd

18 дней назад

Incorrect security UI in Downloads in Google Chrome on Android prior to 146.0.7680.71 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

CVE-2026-3937

msrc

16 дней назад

Chromium: CVE-2026-3937 Incorrect security UI in Downloads

GHSA-cjh2-8jpj-f89m

CVSS3: 6.5

github

17 дней назад

Incorrect security UI in Downloads in Google Chrome on Android prior to 146.0.7680.71 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

openSUSE-SU-2026:20372-1

suse-cvrf

12 дней назад

Security update for chromium

EPSS

Процентиль: 8%

0.00028

Низкий