Insufficient policy enforcement in WebUSB in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5276
NONE
EPSS 0.04%
Updated Apr 01, 2026
Google
CVE Details
CVE ID
CVE-2026-5276
Published Date
Apr 01, 2026
Vendor
Google
Severity
NONE
Exploit Prediction (EPSS)
Probability of Exploit
0.04%
Likelihood of exploitation in next 30 days
Percentile:
13.7th percentile (higher than 13.7% of all CVEs)
Standard patching cycle
Impact
Minimal impact
Source
View Advisory