Primary

Context

Google Chrome UI Spoofing Vulnerability in Dialog Component

Vulnerability

Patched

A vulnerability in Google Chrome's Dialog component, present in versions prior to 148.0.7778.96, allowed remote attackers to perform UI spoofing. This was achieved by sending a crafted HTML page that exploited insufficient validation of untrusted input, potentially misleading users or tricking them into interacting with the UI in a deceptive manner.

Impact

Exploitation of this vulnerability could lead to UI spoofing, where an attacker manipulates the user interface to mislead users or cause them to make unintended choices.

Remediation

Users can update to Google Chrome version 148.0.7778.96 or later to address this vulnerability.

Added: May 6, 2026, 7:45 PM

Updated: May 6, 2026, 7:45 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.6

exploitability

3.6

remediation

7.7

relevance

7.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.6

exploitability

3.6

remediation

7.7

relevance

7.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Google Chrome UI Spoofing Vulnerability in Dialog Component

Vulnerability

Impact

Remediation

Affected Products

Google Chrome

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating