Chrome Navigation VLE before 148.0.7778.168: CVE-2026-8562 May 2026

Side-channel information leakage in Navigation in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)

Vulnerability Analysis

CVE-2026-8562 is exploitable with network access, requires user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have a small impact on confidentiality, a small impact on integrity and availability.

Attack Vector:

NETWORK

Attack Complexity:

LOW

Privileges Required:

NONE

User Interaction:

REQUIRED

Scope:

UNCHANGED

Confidentiality Impact:

LOW

Integrity Impact:

NONE

Availability Impact:

NONE

Weakness Type

Improper Protection Against Physical Side Channels

The product is missing protections or implements insufficient protections against information leakage through physical channels such as power consumption, electromagnetic emissions (EME), acoustic emissions, or other physical attributes.

Products Associated with CVE-2026-8562

Want to know whenever a new CVE is published for Google Chrome? stack.watch will email you.

Chrome Navigation VLE before 148.0.7778.168
CVE-2026-8562 Published on May 14, 2026

Vulnerability Analysis

Weakness Type

Improper Protection Against Physical Side Channels

Products Associated with CVE-2026-8562

Affected Versions

Chrome Navigation VLE before 148.0.7778.168CVE-2026-8562 Published on May 14, 2026

Vulnerability Analysis

Weakness Type

Improper Protection Against Physical Side Channels

Products Associated with CVE-2026-8562

Affected Versions

Chrome Navigation VLE before 148.0.7778.168
CVE-2026-8562 Published on May 14, 2026