SecBoard
Zurück zur CVE-Übersicht

CVE-2026-14137

MEDIUM(4.2)

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:L

Risk Signal Score16/100 — NIEDRIG
  • CVSS 4.2 — Mittel

EPSS-Score

0%

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

4.2

Technische Schwere

Beschreibung

Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

Referenzen