CVE-2026-8516

Insufficient validation of untrusted input in DataTransfer in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity:...

CVE-2026-8516

CVE-2026-8516 affects Google Chrome (pre-148.0.7778.168) where insufficient validation of untrusted input in DataTransfer could allow a remote attacker to obtain potentially sensitive information from process memory. The attack requires convincing a user to perform specific UI gestures via a craf...