Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2026-5276

Опубликовано: 31 мар. 2026
Источник: redhat
CVSS3: 6.5
EPSS Низкий

Описание

Insufficient policy enforcement in WebUSB in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)

An insufficient policy enforcement flaw was found in the WebUSB component of the Chromium browser. Upstream bug(s): https://code.google.com/p/chromium/issues/detail?id=489711638

Отчет

Red Hat Product Security rates the severity of this flaw as determined by the Google Chrome Security Advisory.

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-280
https://bugzilla.redhat.com/show_bug.cgi?id=2453695chromium-browser: Insufficient policy enforcement in WebUSB

EPSS

Процентиль: 14%
0.00045
Низкий

6.5 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2026-5276

CVSS3: 6.5
nvd
15 дней назад

Insufficient policy enforcement in WebUSB in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)

msrc логотип

CVE-2026-5276

msrc
13 дней назад

Chromium: CVE-2026-5276 Insufficient policy enforcement in WebUSB

debian логотип

CVE-2026-5276

CVSS3: 6.5
debian
15 дней назад

Insufficient policy enforcement in WebUSB in Google Chrome prior to 14 ...

github логотип

GHSA-4j5r-7xc7-9pr6

CVSS3: 6.5
github
14 дней назад

Insufficient policy enforcement in WebUSB in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)

suse-cvrf логотип

openSUSE-SU-2026:20460-1

suse-cvrf
12 дней назад

Security update for chromium

EPSS

Процентиль: 14%
0.00045
Низкий

6.5 Medium

CVSS3