CVE-2026-8874 in Chrome Extensioninfo

Zusammenfassung

von MITRE • 03.06.2026

Version 3.0.7 of the Securly Chrome Extension downloads JSON files containing crisis alert keywords and filtering rules over unencrypted HTTP via the Fetch API. Other endpoints in the same extension correctly fetch IWF and CIPA data over HTTPS, demonstrating an inconsistent implementation of TLS.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

Certcc

Reservieren

18.05.2026

Veröffentlichung

03.06.2026

Moderieren

akzeptiert

Eintrag

VDB-368202

CPE

bereit

EPSS

0.00000

KEV

nein

Aktivitäten

low

Quellen

MITREhttps://www.cve.org/CVERecord?id=CVE-2026-8874
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2026-8874
CVE Detailshttps://www.cvedetails.com/cve/CVE-2026-8874/

ZurückÜbersichtWeiter

Do you know our Splunk app?

Download it now for free!