Critical elevation of privilege vulnerability discovered in Google Chrome related to Gemini AI
Cybersecurity researchers have revealed details about a critical vulnerability already patched in Google Chrome that could have allowed attackers to elevate privileges and gain access to local files on the victim’s system. The vulnerability, tracked as CVE-2026-0628 and with a CVSS score of 8.8, was described as insufficient policy enforcement in the WebView tag. Google patched it in early January 2026 in version 143.0.7499.192/.193 for Windows/Mac and 143.0.7499.192 for Linux. ...