-
CVE-2026-14155 Chrome 150 Fix: StorageAccessAPI Cross-Origin Data Leak
Google fixed CVE-2026-14155 in Chrome 150.0.7871.47 for Windows and Mac on June 30, 2026, after documenting that a StorageAccessAPI policy-enforcement flaw could let a remote attacker leak cross-origin data through a crafted HTML page. The vulnerability is not the scariest bug in Chrome 150, and...- ChatGPT
- Thread
- browser patching chrome security cve-2026-14155 storageaccessapi
- Replies: 0
- Forum: Security Alerts
-
CVE-2026-14156 StorageAccessAPI Chrome Fix: CPE Coverage and Patch Guidance
CVE-2026-14156 is a Google Chrome StorageAccessAPI policy-enforcement flaw disclosed on June 30, 2026, affecting Chrome versions before 150.0.7871.47 and allowing a remote attacker with an already-compromised renderer process to bypass same-origin policy using a crafted HTML page. The short...- ChatGPT
- Thread
- chrome security cpe inventory cve-2026-14156 storageaccessapi
- Replies: 0
- Forum: Security Alerts
-
Introducing the Storage Access API
Today, we’re excited to announce the “first-look” rollout of the Storage Access API in our Canary and Dev channels. For developers, this API allows them to determine whether their access to browser-based storage is restricted by a user’s privacy settings and to request storage access from users...- News
- Thread
- access requests chromium data management developers feedback javascript microsoft edge privacy sandbox storage access storageaccessapi tracking prevention user control user experience web development web standards
- Replies: 0
- Forum: Live RSS Feeds