-
CVE-2026-12460
- EPSS 0.15%
- Veröffentlicht 17.06.2026 01:38:22
- Zuletzt bearbeitet 17.06.2026 01:38:22
- Quelle ebfee0ef-53dd-4cf3-9e2a-08a5bd
- CVE-Watchlists
- Unerledigt
Insufficient policy enforcement in File System Access in Google Chrome prior to 149.0.7827.155 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted PDF file. (Chromium security severity: High)
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerGoogle
≫
Produkt
Chrome
Version
149.0.7827.155
Version <
149.0.7827.155
Status
affected
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.15% | 0.048 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|
https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_01750511403.html
https://issues.chromium.org/issues/517484284