CVE-2026-2316

Опубликовано: 10 фев. 2026

Источник: redhat

CVSS3: 6.5

EPSS Низкий

Описание

Insufficient policy enforcement in Frames in Google Chrome prior to 145.0.7632.45 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

An insufficient policy enforcement flaw was found in the Frames component of the Chromium browser.

Отчет

Red Hat Product Security rates the severity of this flaw as determined by the Google Chrome Security Advisory.

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=2439072chromium-browser: Insufficient policy enforcement in Frames

EPSS

Процентиль: 13%

0.00225

Низкий

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2026-2316

CVSS3: 6.5

ubuntu

4 месяца назад

Insufficient policy enforcement in Frames in Google Chrome prior to 145.0.7632.45 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

CVE-2026-2316

CVSS3: 6.5

nvd

4 месяца назад

Insufficient policy enforcement in Frames in Google Chrome prior to 145.0.7632.45 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

CVE-2026-2316

msrc

4 месяца назад

Chromium: CVE-2026-2316 Insufficient policy enforcement in Frames

CVE-2026-2316

CVSS3: 6.5

debian

4 месяца назад

Insufficient policy enforcement in Frames in Google Chrome prior to 14 ...

GHSA-c37x-p7mp-hh29

CVSS3: 6.5

github

4 месяца назад

Insufficient policy enforcement in Frames in Google Chrome prior to 145.0.7632.45 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

EPSS

Процентиль: 13%

0.00225

Низкий

6.5 Medium

CVSS3