CVE-2026-8583

medium Red Hat
CVSS v3 Base Score
5.7
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N
EPSS Score
0.1%
Exploitation probability in 30 days
Top 82% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
Required
Confidentiality
High
Integrity
None
Availability
None
Published: May 14, 2026 (56 days ago)
Last Modified: May 14, 2026
Vendor: Red Hat
Source: REDHAT

Description

An insufficient policy enforcement flaw was found in the WebXR component of the Chromium browser. Upstream bug(s): https://code.google.com/p/chromium/issues/detail?id=497975477

CWE

CWE-280

References