Find notable cyber news and cases, enriched with sources, timelines, and signals.

Google Gemini AI in Chrome privilege escalation flaw (CVE-2026-0628)

Vulnerability
First reported
Last updated
Happening score
H score 33
2 unique sources, 2 articles

Summary

Hide ▲

Google has fixed CVE-2026-0628 in Gemini AI in Chrome, a high-severity flaw that let a malicious extension hijack the privileged Gemini side panel and expose user privacy and device resources. The weakness could let extensions with only basic permissions escalate privileges to access the victim's camera and microphone, take screenshots, and read local files and directories. Palo Alto Networks Unit 42 demonstrated the issue in October, and Google reproduced the exploit conditions before patching it in early January. The flaw matters because the affected panel sat inside a highly privileged browser component used by Chrome users.

Related Happenings

Google Dialogflow CX Code Blocks shared-runtime isolation security flaw

Vulnerability
H score32 First: 07.07.2026 19:37 Last: 07.07.2026 19:37 Sources 1

About this happening: **Google Dialogflow CX Code Blocks** had a shared-runtime isolation flaw that could let one editable agent affect other **Code Block-enabled agents** in the same **Google Cloud pr...

Dormant remote-controlled JavaScript injection path in Adblock for YouTube Chrome extension

Technical Analysis
H score23 First: 25.06.2026 17:12 Last: 25.06.2026 17:12 Sources 1

About this happening: A **Chrome extension** with **10 million+ installs** was found to carry a **dormant script-injection path**, raising the risk of **arbitrary JavaScript execution** across visited...

Google Gemini on Android notification-injection bypass using Fake Context Alignment

Technical Analysis
H score16 First: 03.06.2026 22:11 Last: 03.06.2026 22:11 Sources 1

About this happening: Researchers found a **notification-based prompt-injection bypass** in **Google Gemini on Android** that could turn hostile notification text into **unauthorized assistant actions*...

Chromium JavaScript background RCE flaw

Vulnerability
H score16 First: 21.05.2026 21:13 Last: 21.05.2026 21:13 Sources 1

About this happening: The unfixed **Chromium** flaw keeps **JavaScript** running after the browser is closed, creating **remote code execution** risk across **Chromium-based browsers**. A malicious sit...

Google overhauls Android and Chrome bug bounty programs

Commercial Activity
H score0 First: 05.05.2026 14:24 Last: 05.05.2026 14:24 Sources 1

About this happening: **Google** overhauls its **Android and Chrome** vulnerability rewards programs, reshaping payout tiers for **exploit research** and raising top rewards to **$1.5 million**. The ch...

Timeline

  1. 02.03.2026 19:08 2 articles · 4mo ago

    Unit 42 researcher discovers Chrome WebView tag flaw

    Technical Analysis Update

    Palo Alto Networks Unit 42 researcher Gal Weizman discovered and reported CVE-2026-0628 in Google Chrome on November 23, 2025, identifying insufficient policy enforcement in the WebView tag that could let a malicious extension inject scripts or HTML into a privileged page and seize control of the Gemini Live panel.

    Show sources
  2. 02.03.2026 19:08 1 articles · 4mo ago

    Chrome flaw disclosed as now-patched with January 2026 fix

    Initial Disclosure

    Cybersecurity researchers publicly disclosed the now-patched Google Chrome flaw on March 2, 2026, noting that Google had fixed CVE-2026-0628 in early January 2026 in 143.0.7499.192/.193 for Windows/Mac and 143.0.7499.192 for Linux after the issue was shown to enable privilege escalation, arbitrary code execution at gemini.google[.]com/app, and access to local files and other sensitive browser capabilities.

    Show sources
  3. 02.03.2026 12:27 1 articles · 4mo ago

    Google Gemini AI in Chrome privilege escalation flaw (CVE-2026-0628)

    Initial Disclosure

    In **October**, researchers demonstrated that a normal Chrome extension could hijack the privileged **Gemini side panel** through **CVE-2026-0628**. Google later reproduced the exploit conditions and patched the flaw in **early January**.

    Show sources