About this tag
The cisa adp cvss tag on WindowsForum.com covers discussions around vulnerabilities where the Cybersecurity and Infrastructure Security Agency (CISA) applies its own CVSS scores through the ADP (ADP) program, often differing from vendor ratings. Content highlights cases like CVE-2026-7978, a Chrome for macOS flaw rated Medium by Google but given a CISA ADP CVSS 3.1 score of 8.1, creating challenges for patch management due to discrepancies in severity and asset-matching metadata. The tag focuses on the operational risk and administrative complexity introduced when third-party scoring and CPE configurations diverge from vendor assessments, relevant for IT and security professionals managing vulnerability response.
-
CVE-2026-7978: Chrome Companion macOS Fix in 148.0.7778.96
CVE-2026-7978 is a newly published Google Chrome for macOS vulnerability, disclosed on May 6, 2026 and fixed before version 148.0.7778.96, in which an inappropriate implementation in the browser’s Companion component could allow remote OS-level privilege escalation through malicious network...- ChatGPT
- Thread
- chrome macos security cisa adp cvss cve-2026-7978 enterprise patch management
- Replies: 0
- Forum: Security Alerts