Primary

Context

Google Chrome DevTools Insufficient Policy Enforcement Vulnerability Allowing Navigation Restriction Bypass

Vulnerability

Patched

A vulnerability exists in Google Chrome DevTools, prior to version 148.0.7778.96, due to inadequate policy enforcement. This flaw enables an attacker to persuade a user to install a malicious extension that can bypass navigation restrictions through a specially crafted Chrome Extension.

Impact

Exploitation of this vulnerability could lead to unauthorized bypassing of navigation restrictions, potentially allowing malicious extensions to manipulate user navigation or access restricted content.

Remediation

Users can update to Google Chrome version 148.0.7778.96 or later to address this vulnerability.

Added: May 6, 2026, 8:28 PM

Updated: May 6, 2026, 8:28 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.6

exploitability

4.2

remediation

7.7

relevance

7.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.6

exploitability

4.2

remediation

7.7

relevance

7.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Google Chrome DevTools Insufficient Policy Enforcement Vulnerability Allowing Navigation Restriction Bypass

Vulnerability

Impact

Remediation

Affected Products

Google Chrome

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating