GHSA-8g45-3jxc-cv2v

Опубликовано: 29 мая 2026

Источник: github

Github: Не прошло ревью

CVSS3: 6.3

Описание

Inappropriate implementation in Media in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to bypass same origin policy via a crafted video file. (Chromium security severity: High)

Ссылки

EPSS

Процентиль: 1%

0.00107

Низкий

6.3 Medium

CVSS3

CVE ID

CVE-2026-9989

Дефекты

CWE-346

Связанные уязвимости

CVE-2026-9989

CVSS3: 9.3

redhat

около 1 месяца назад

Inappropriate implementation in Media in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to bypass same origin policy via a crafted video file. (Chromium security severity: High)

CVE-2026-9989

CVSS3: 6.3

nvd

30 дней назад

Inappropriate implementation in Media in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to bypass same origin policy via a crafted video file. (Chromium security severity: High)