CVE-2026-11189
EUVD-2026-3465004.06.2026, 23:17
Insufficient validation of untrusted input in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension. (Chromium security severity: Medium)Enginsight
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| chrome | 𝑥 ≤ 149.0.7827.53 | CNA |
Debian Releases
Common Weakness Enumeration
Vulnerability Media Exposure