Insufficient validation of untrusted input in CustomTabs in Google Chrome on Android prior to 150.0.7871.47 allowed a local attacker to perform UI spoofing via a malicious file. (Chromium security severity: Medium)Referenceshttps://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0175352312.htmlhttps://issues.chromium.org/issues/513508305