NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-11126

Summary	Inappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. (Chromium security severity: Medium)
Publication Date	June 5, 2026, 8:17 a.m.
Registration Date	June 6, 2026, 4:13 a.m.
Last Update	June 6, 2026, 12:02 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html	chrome-cve-admin@google.com
2	https://issues.chromium.org/issues/501528031	chrome-cve-admin@google.com

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-20	不適切な入力確認	https://cwe.mitre.org/data/definitions/20.html