NVD Vulnerability Detail

Search Exploit, PoC

Exploit DB

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-10997

Summary	Insufficient policy enforcement in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass discretionary access control via a crafted Chrome Extension. (Chromium security severity: Medium)
Publication Date	June 5, 2026, 8:17 a.m.
Registration Date	June 6, 2026, 4:12 a.m.
Last Update	June 6, 2026, 12:02 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html	chrome-cve-admin@google.com
2	https://issues.chromium.org/issues/464217867	chrome-cve-admin@google.com

Common Vulnerabilities List