HIGHCVE-2026-3063Published Modified CNA Chrome
CVE-2026-3063: Inappropriate implementation in DevTools in Google Chrome prior to 145
Inappropriate implementation in DevTools in Google Chrome prior to 145.0.7632.116 allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via DevTools. (Chromium security severity: High)
Metrics
- CVSS v3.1
- 8.8
- Severity
- HIGH
- Fixed in
- 145.0.7632.116
- Affected Products
- 1
Fix available
145.0.7632.116
Affected packages
- Google / Chrome< 145.0.7632.116 (from 145.0.7632.116)
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H