VDB

CVE-2026-8005

CVE-2026-8005 PUBLISHED CVSS 4.300000190734863 MEDIUM

Insufficient validation of untrusted input in Cast in Google Chrome prior to 148.0.7778.96 allowed an attacker on the local network segment to bypass same origin policy via malicious network traffic. (Chromium security severity: Low)

EPSS 0.02% · 4.7th percentile

Risk Scores

CVSS 3.1
4.300000190734863
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS Score
0.02%
4.7th percentile

Affected Products

VendorProductVersions
GoogleChrome148.0.7778.96

Timeline

  • May 6, 2026 CVE Published
  • May 6, 2026 CVE Updated
  • May 7, 2026 EPSS Score
  • May 7, 2026 Security Advisory
  • May 18, 2026 EPSS Score
  • May 19, 2026 EPSS Score
  • May 20, 2026 EPSS Score
  • May 21, 2026 EPSS Score
  • May 22, 2026 EPSS Score
  • May 23, 2026 EPSS Score
  • May 24, 2026 EPSS Score
  • May 25, 2026 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›