Google Chrome before 150.0.7871.47 contains CVE-2026-14086, an insufficient policy enforcement flaw in the browser’s HID handling that NVD says could let a remote attacker execute arbitrary code through a crafted HTML page. That sentence is both alarming and strangely understated, because...