{"uuid": "1e45b60e-7d68-43dc-8407-e6fcf91b1360", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0628", "type": "published-proof-of-concept", "source": "https://t.me/thehackernews/8516", "content": "\u26a0\ufe0f A new Google Chrome flaw (CVE-2026-0628, CVSS 8.8) could let a malicious extension inject code into the Gemini side panel due to weak WebView policy enforcement.\n\nSuccessful exploitation enabled privilege escalation and potential access to the camera, microphone, screenshots, and local files.\n\n\ud83d\udd17 Details \u2192 https://thehackernews.com/2026/03/new-chrome-vulnerability-let-malicious.html", "creation_timestamp": "2026-03-02T17:17:13.000000Z"}