> TritonInfoSec News
Home / Mar 03, 2026 / Story
0
#6 The Hacker News general March 02, 2026 at 17:08 UTC

New Chrome Vulnerability Let Malicious Extensions Escalate Privileges via Gemini Panel

By [email protected] (The Hacker News)

AI Summary

CVE-2026-0628, a Chrome vulnerability with CVSS score 8.8, allowed malicious extensions to escalate privileges and access local files by exploiting insufficient policy enforcement in the WebView tag affecting Chrome's Gemini panel. Google patched the flaw in January 2026, but the vulnerability demonstrates risks in AI-integrated browser features.

Read full article → https://thehackernews.com/2026/03/new-chrome-vulne…

Relevance score: 83.0/100

# More from March 03

  1. 1
    Google addresses actively exploited Qualcomm zero-day in fresh batch of 129 Android vulnerabilities CyberScoop
  2. 2
    CyberStrikeAI tool adopted by hackers for AI-powered attacks BleepingComputer
  3. 3
    30 Alleged Members of 'The Com' Arrested in Project Compass Dark Reading
  4. 4
    APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday The Hacker News
  5. 5
    Cyber Command disrupted Iranian comms, sensors, top general says
  6. 7
    North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT The Hacker News
  7. 8
    Fake Google Security site uses PWA app to steal credentials, MFA codes BleepingComputer
  8. 9
    University of Hawaiʻi Cancer Center confirms data leak following ransomware attack
  9. 10
    US-Israel and Iran Trade Cyberattacks: Pro-West Hacks Cause Disruption as Tehran Retaliates SecurityWeek