Google disclosed CVE-2026-14058 on June 30, 2026, as a low-severity Chrome Parser flaw fixed before version 150.0.7871.47, allowing a remote attacker to bypass Content Security Policy protections with a crafted HTML page if a user visited it. The National Vulnerability Database later added the...