What is CVE-2026-2322?

A medium-severity vulnerability in Google Chrome prior to version 145.0.7632.45 allows remote attackers to perform UI spoofing. Organizations are advised to prioritize patching to mitigate potential risks.

What is the severity of CVE-2026-2322?

CVE-2026-2322 has a severity rating of MEDIUM with a CVSS base score of 5.4.

CVE-2026-2322 | Medium Vulnerability in Google Chrome

Inappropriate implementation in File input in Google Chrome prior to 145.0.7632.45 allows a remote attacker who convinces a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. This vulnerability is classified as medium severity with a CVSS score of 5.4.

Risk to organizations includes potential unauthorized access and manipulation of user interfaces, leading to phishing or other social engineering attacks. Given the nature of this vulnerability, attackers may exploit it through network-based vectors, underscoring the importance of prompt remediation.

Organizations should prioritize patching immediately to mitigate risks associated with this vulnerability, which may be exploited if users are tricked into performing specific actions.

The vulnerability was published on February 11, 2026, and is now part of the security landscape that organizations need to monitor closely.

Vulnerability Details

This vulnerability allows a remote attacker to perform UI spoofing through a crafted HTML page, classified under CWE-451. The CVSS score of 5.4 indicates a medium severity, with a network attack vector and low attack complexity.

The vulnerability affects Google Chrome versions prior to 145.0.7632.45. It requires user interaction, which may amplify its exploitation potential if users are not cautious.

Technical Analysis

The root cause of this vulnerability is the inappropriate implementation of file input handling within Google Chrome. Attackers can exploit this through crafted HTML pages that prompt users to engage in specific UI gestures.

The attack vector is network-based, allowing attackers to target users remotely. The complexity of the attack is low, as it relies on user interaction and does not require elevated privileges.

The impact on confidentiality is none, while integrity and availability are affected at a low level. This means that while sensitive data may not be compromised, user experience and interface integrity can be manipulated.

Risk & Impact Analysis

The potential for exploitation of this vulnerability poses a real-world risk for organizations, particularly those with users who may be susceptible to social engineering tactics. The blast radius could extend to any user of the affected Chrome versions, making the urgency for patching high.

Organizations should address this vulnerability in their patch cycle as part of best practices for maintaining secure systems. The CVSS score indicates that while the risk is moderate, the possible impact should not be underestimated.

Exploitation Status

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

All versions prior to Google Chrome 145.0.7632.45 are affected by this vulnerability.

Mitigation & Remediation

Organizations should upgrade to Google Chrome version 145.0.7632.45 or later to remediate this vulnerability. If immediate patching is not possible, organizations should implement strict user training to recognize potentially malicious UI gestures.

Additionally, users should be advised to avoid interacting with suspicious web pages that prompt unusual UI actions.

Continuous penetration testing can also help identify and mitigate similar vulnerabilities.

Detection Guidance

Monitoring user interactions with file input elements and tracking changes in user interface presentations can help detect potential exploitation attempts of this vulnerability.

Systems should log suspicious UI interactions, especially those that occur after a user engages with file input elements.

AppSecure Threat Intelligence Insight

The emergence of this vulnerability reflects ongoing challenges in browser security, particularly concerning user interface interactions. Security teams should stay informed about similar vulnerabilities and trends in UI manipulation techniques.

This incident highlights the need for continuous vigilance and user training to mitigate risks associated with social engineering and UI spoofing.

Understanding penetration testing methodologies can provide valuable insights into strengthening defenses against such vulnerabilities.

Establishing a vulnerability management program can further enhance an organization's security posture.

Adhering to API security best practices is also essential as applications increasingly rely on complex UI components.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2026-2322: Medium Vulnerability in Google Chrome