PT-2026-7151 · Google · Captive Browser
Stebalien
·
Published
2026-02-09
·
Updated
2026-02-09
·
CVE-2026-25740
CVSS v4.0
5.8
Medium
| Vector | AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions
captive browser versions prior to 25.11
Description
The captive browser, a dedicated Chrome instance used for logging into captive portals, contains a flaw. In versions 25.05 and earlier, enabling the
programs.captive-browser feature allows any user on the system to execute arbitrary commands with the CAP NET RAW capability. This capability permits binding to privileged ports and spoofing localhost traffic from privileged services.Recommendations
Update to version 25.11 or later.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Captive Browser