PT-2026-24884 · Google+1 · Google Chrome+1

Abhishek Kumar

Publicado

2026-01-03

Atualizado

2026-05-15

CVE-2026-3937

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 146.0.7680.71

Description An incorrect security user interface in the Downloads feature of Google Chrome on Android allowed a remote attacker to perform UI spoofing through a crafted HTML page. This issue has a Chromium security severity rating of Low.

Recommendations Update Google Chrome to version 146.0.7680.71 or later.

Correção

UI Misrepresentation of Critical Information

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-451CWE-20

Identificadores relacionados

BDU:2026-05755

CVE-2026-3937

OPENSUSE-SU-2026:10376-1

OPENSUSE-SU-2026:20372-1

Produtos afetados

Google Chrome

Red Os

PT-2026-24884 · Google+1 · Google Chrome+1

CVE-2026-3937

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 51