CVE-2026-9115
MEDIUM4.3CVSS v3
—CVSS v2
0.03%
EPSS (exploit probability)
CWE-693CWE
Description
Insufficient policy enforcement in Service Worker in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: High)
CVSS v3 vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
Affected routers (0)
No routers currently mapped to this CVE in our database.