Upstream information
Description
Insufficient policy enforcement in HTML-in-Canvas in Google Chrome prior to 150.0.7871.125 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: High)SUSE information
Overall state of this security issue: Does not affect SUSE products
This issue is currently rated as having critical severity.
SUSE Bugzilla entry: 1271415 [IN_PROGRESS] No SUSE Security Announcements cross referenced.SUSE Timeline for this CVE
CVE page created: Wed Jul 15 11:26:39 2026CVE page last modified: Wed Jul 15 20:22:57 2026