DevTools Policy Bypass in Google Chrome <146.0.7680.71
CVE-2026-3940 Published on March 11, 2026

Insufficient policy enforcement in DevTools in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Low)

NVD

Products Associated with CVE-2026-3940

Want to know whenever a new CVE is published for Google Chrome? stack.watch will email you.

Google Chrome

Affected Versions

Google Chrome:

Version 146.0.7680.71 and below 146.0.7680.71 is affected.

DevTools Policy Bypass in Google Chrome <146.0.7680.71CVE-2026-3940 Published on March 11, 2026

Products Associated with CVE-2026-3940

Affected Versions

DevTools Policy Bypass in Google Chrome <146.0.7680.71
CVE-2026-3940 Published on March 11, 2026