CVE-2026-13840
CVE-2026-13840 involves insufficient policy enforcement in Canvas within Google Chrome prior to version 150.0.7871.47, allowing a remote attacker to leak cross-origin data via a crafted HTML page. The vulnerability is described as a canvas policy enforcement issue, with high severity. The availab...