Google Chrome CVE-2026-13988 is a medium-severity UI spoofing flaw in Chrome’s Paint component, fixed for desktop users in version 150.0.7871.47 after disclosure on June 30, 2026, and later enriched by NIST and CISA on July 1. The bug is not the scariest item in Chrome’s enormous late-June...