CVE-2026-8586: Inappropriate implementation in Chromoting in Google Chrome prior to 148.0.7778.168 allowed a local attacker to bypass discretionary access control via a…

medium5.5CVSS 3.1

AVAACLPRNUIRSUCLILAL

Inappropriate implementation in Chromoting in Google Chrome prior to 148.0.7778.168 allowed a local attacker to bypass discretionary access control via a malicious file. (Chromium security severity: Medium)

Affected

3 ranges

Vendor	Product	Version range	Fixed in
google	chrome	< 148.0.7778.168	148.0.7778.168
google	chrome	>= 148.0.7778.168 < 148.0.7778.168	148.0.7778.168
google	chrome_desktop	—	—