CVE-2026-15778 PUBLISHED

Assigner: Chrome
Reserved: 14.07.2026 Published: 14.07.2026 Updated: 15.07.2026

Insufficient validation of untrusted input in Navigation in Google Chrome prior to 150.0.7871.125 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium)

Product Status

Vendor Google
Product Chrome
Versions
  • affected from 150.0.7871.125 to 150.0.7871.125 (excl.)

References

Problem Types

  • Insufficient validation of untrusted input