Vulnerability in Google Chrome
CVE-2026-5891
Insufficient policy enforcement in browser UI in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)
EPSS: 0.001 (18.6th percentile) — read the EPSS interpretation.
Affected products
- Google Chrome — versions 147.0.7727.55