You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve 2026-7989
About this tag
CVE-2026-7989 is a medium-severity Chromium DataTransfer validation flaw fixed in Chrome 148 and relevant to Chromium-based browsers including Microsoft Edge on Windows, macOS, and Linux. The vulnerability is described as a renderer-compromise follow-on primitive rather than a direct remote code execution vector. It highlights how modern browser security relies on layered validation boundaries to contain incidents when one compartment is breached. Discussions on WindowsForum.com cover the disclosure by Google and Microsoft on May 6, 2026, and the implications for browser security architecture.
Google and Microsoft disclosed CVE-2026-7989 on May 6, 2026, describing a medium-severity Chromium DataTransfer validation flaw fixed in Chrome before version 148.0.7778.96 and relevant to Chromium-based browsers, including Microsoft Edge, on Windows, macOS, and Linux. The bug is not the...