CVE-2026-8563 - Vulnerability Details

- chromium-browser: chromium-browser: Insufficient policy enforcement in IFrame Sandbox

Description

Insufficient policy enforcement in IFrame Sandbox in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium)

Published: 2026-05-14

Score: 4.3 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

Insufficient enforcement of the sandbox policy for iframes in Google Chrome on Windows before version 148.0.7778.168 allows a remote attacker to craft a HTML page that causes the browser to bypass navigation restrictions within a sandboxed context. The flaw does not grant code execution or full sandbox escape; it specifically enables an attacker to redirect or load disallowed URLs under the illusion of sandbox isolation.

Affected Systems

Google Chrome running on Windows systems with versions older than 148.0.7778.168. Users of the stable channel using these older releases are vulnerable until an update is installed.

Risk and Exploitability

The EPSS score is 0.00016, indicating a very low exploitation probability, and the vulnerability is not listed in CISA KEV. A remote attacker can host a malicious HTML page and serve it to a victim, causing the victim’s browser to navigate to attacker‑controlled URLs from a sandboxed iframe. The attack does not require additional system privileges and relies on the browser’s mis‑enforced policy, and with a CVSS score of 4.3 it is classified as medium severity per Chromium’s classification.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Google

Chrome

affected

Version	Status	Constraints
`148.0.7778.168`	affected	< 148.0.7778.168

No data.

Vendor Product Confidence Versions

Google

Chrome

100%

Version	Status	Scheme	Platform
`[148.0.7778.168,148.0.7778.168)`	affected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade Chrome to version 148.0.7778.168 or later to apply the sandbox rule fix.
Critically review all embedded iframes and remove any navigation privileges that are not essential for functionality.
If an immediate patch cannot be applied, enforce a Chrome Enterprise policy to disable sandboxed iframes that allow navigation changes during runtime.
Optional: monitor browser process logs for unexpected navigation events from sandboxed contexts as an early warning mechanism.

Generated by OpenCVE AI on May 15, 2026 at 17:38 UTC.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
Debian DSA	DSA-6273-1	chromium security update

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact Low

Availability Impact None

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00026.

Exploitation none

Automatable no

Technical Impact partial

References

Link	Providers
https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_12.html
https://issues.chromium.org/issues/40061220
https://nvd.nist.gov/vuln/detail/CVE-2026-8563
https://www.cve.org/CVERecord?id=CVE-2026-8563

History

Fri, 15 May 2026 16:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-693
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Fri, 15 May 2026 14:30:00 +0000

Type	Values Removed	Values Added
Weaknesses	CWE-285

Fri, 15 May 2026 12:15:00 +0000

Type	Values Removed	Values Added
Title	Iframe Sandbox Navigation Bypass in Google Chrome on Windows	chromium-browser: chromium-browser: Insufficient policy enforcement in IFrame Sandbox
Weaknesses		CWE-280
References		https://nvd.nist.gov/vuln/detail/CVE-2026-8563 https://www.cve.org/CVERecord?id=CVE-2026-8563
Metrics	threat_severity `None`	cvssV3_1 `{'score': 4.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N'}` threat_severity `Moderate`

Thu, 14 May 2026 22:45:00 +0000

Type	Values Removed	Values Added
Title		Iframe Sandbox Navigation Bypass in Google Chrome on Windows
First Time appeared		Google Google chrome
Weaknesses		CWE-285
Vendors & Products		Google Google chrome

Thu, 14 May 2026 20:15:00 +0000

Type	Values Removed	Values Added
Description		Insufficient policy enforcement in IFrame Sandbox in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium)
References		https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_12.html https://issues.chromium.org/issues/40061220

Subscriptions

Google Chrome

MITRE

Status: PUBLISHED

Assigner: Chrome

Published: 2026-05-14T19:52:30.542Z

Updated: 2026-05-15T15:21:48.835Z

Reserved: 2026-05-14T05:40:22.929Z

Link: CVE-2026-8563

Vulnrichment

Updated: 2026-05-15T15:21:44.602Z

NVD

Status : Undergoing Analysis

Published: 2026-05-14T20:17:18.440

Modified: 2026-05-15T16:16:15.860

Link: CVE-2026-8563

Redhat

Severity : Moderate

Publid Date: 2026-05-14T19:52:30Z

Links: CVE-2026-8563 - Bugzilla

OpenCVE Enrichment

Updated: 2026-05-15T17:45:04Z

Weaknesses

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact Low

Availability Impact None

User Interaction Required

Exploitation none

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object