Upstream information
Description
Insufficient policy enforcement in DevTools in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. (Chromium security severity: Low)SUSE information
Overall state of this security issue: Does not affect SUSE products
SUSE Bugzilla entry: 1264175 [NEW] No SUSE Security Announcements cross referenced.SUSE Timeline for this CVE
CVE page created: Wed May 6 08:15:03 2026CVE page last modified: Fri May 8 11:55:11 2026