CVE-2026-13999
UNKNOWN
NVD
CVSS Score
0
Severity
UNKNOWN
Published
Jun 30, 2026
Vendor
unknown
Description
Insufficient validation of untrusted input in Extensions in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extension to perform UI spoofing via a crafted Chrome Extension. (Chromium security severity: Medium)