Pre-trust Execution Window

• Entity ID: ent-20260423-p2a005000001
• Type: concept
• Scope: private
• Status: active

Description

Named vulnerability class where extension code runs before the user's trust dialog. Defense-in-depth layers can be bypassed when untrusted content executes prior to permission enforcement, implicating several reported CVEs.

Key claims

• Pre-trust execution window is a named vulnerability class

Relations

• Pre-trust Execution Window --[depends_on]--> Seven Independent Safety Layers

Sources

src-20260423-0cff68d3291b