Description
Insufficient policy enforcement in History Navigation in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium security severity: Low)
Published: 2026-04-08
Score: 6.1 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Remote Script Injection
Action: Apply Patch
AI Analysis

Impact

Insufficient policy enforcement in Chrome’s History Navigation allows an attacker to inject arbitrary scripts or HTML through a crafted page when a user performs specific UI gestures. The flaw enables user‑interaction‑based cross‑site scripting (UXSS), which can execute malicious code in the context of the browser and lead to data theft or session hijacking. The vulnerability is linked to CWE‑346 (Broken Access Control) and CWE‑79 (Cross‑Site Scripting).

Affected Systems

Google Chrome browsers running any version earlier than 147.0.7727.55 on Windows, macOS, and Linux are affected. The flaw does not depend on the operating system, but any Chrome installation in the specified version range is vulnerable.

Risk and Exploitability

The CVSS score is 6.1, indicating a medium‑severity vulnerability. The EPSS score is below 1%, showing a low probability of exploitation in the wild. The vulnerability is not listed in the CISA KEV catalog. Exploitation requires a remote attacker to craft a malicious page and convince a user to interact with certain UI gestures; it is a user‑interaction‑dependent attack rather than a purely remote exploit. If successfully performed, it permits execution of arbitrary scripts in the user’s browser context, potentially leading to sensitive data exposure or unauthorized actions performed on behalf of the user.

Generated by OpenCVE AI on April 13, 2026 at 22:27 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Google Chrome to version 147.0.7727.55 or later

Generated by OpenCVE AI on April 13, 2026 at 22:27 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DSA Debian DSA DSA-6205-1 chromium security update
History

Mon, 13 Apr 2026 21:30:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
Linux
Linux linux Kernel
Microsoft
Microsoft windows
CPEs cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
Vendors & Products Apple
Apple macos
Linux
Linux linux Kernel
Microsoft
Microsoft windows

Mon, 13 Apr 2026 19:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-346
Metrics cvssV3_1

{'score': 8.0, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N'}

 ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

cvssV3_1

{'score': 6.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N'}

Fri, 10 Apr 2026 12:15:00 +0000

Type Values Removed Values Added
Title UXSS via History Navigation in Chrome 147 chromium-browser: Incorrect security UI in History Navigation
References
Metrics threat_severity

None

 cvssV3_1

{'score': 8.0, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N'}

threat_severity

Low

Thu, 09 Apr 2026 08:30:00 +0000

Type Values Removed Values Added
Title UXSS via History Navigation in Chrome 147
First Time appeared Google
Google chrome
Weaknesses CWE-79
Vendors & Products Google
Google chrome

Wed, 08 Apr 2026 21:30:00 +0000

Type Values Removed Values Added
Description Insufficient policy enforcement in History Navigation in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium security severity: Low)
References

Subscriptions

Apple Macos
Google Chrome
Linux Linux Kernel
Microsoft Windows
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-04-13T18:17:45.684Z

Reserved: 2026-04-08T19:34:42.721Z

Link: CVE-2026-5899

cve-icon Vulnrichment

Updated: 2026-04-13T18:02:15.422Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-08T22:16:29.787

Modified: 2026-04-13T21:16:57.290

Link: CVE-2026-5899

cve-icon Redhat

Severity : Low

Publid Date: 2026-04-07T00:00:00Z

Links: CVE-2026-5899 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-04-14T16:37:30Z

Weaknesses