CVE-2026-3938

Description

Insufficient policy enforcement in Clipboard in Google Chrome prior to 146.0.7680.71 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)

Affected packages (1)

• Debian/chromiumfrom 0

CVSS scores

References (1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2026-3938