CVE-2026-6313

ADVISORY - nist

Summary

Insufficient policy enforcement in CORS in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-284⁠

Improper Access Control

ADVISORY - redhat

CWE-346⁠

Origin Validation Error

Impacted images

Advisories

Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.