CVE-2026-14105
Google Chrome SPEECH component suffers insufficient policy enforcement before version 150.0.7871.47, allowing a remote attacker to bypass the same-origin policy via a crafted HTML page. Affected product: Chrome (Speech). Root cause: policy enforcement gap in the Speech feature. Impact: potential ...