CVE-2026-11223 - Vulnerability Details

- chromium-browser: Insufficient validation of untrusted input in Network

Description

Insufficient validation of untrusted input in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. (Chromium security severity: Low)

Published: 2026-06-04

Score: 6.5 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

An insufficiently validated input vector in the Network module of Google Chrome allows a remote attacker, once having compromised the renderer process, to bypass the same‑origin policy. The flaw is a classic input validation weakness that can be exploited to gain unauthorized access to web page resources that would normally be restricted by browser security boundaries.

Affected Systems

Victims are users running Google Chrome prior to version 149.0.7827.53. The affected component is the renderer process within the browser. Any Chrome installation on which the renderer has been compromised can be impacted.

Risk and Exploitability

The CVSS score of 6.5 indicates moderate risk. The EPSS score is less than 1% and the vulnerability is not listed in CISA KEV. Exploitation still requires the attacker to have already compromised the renderer process, which is a non‑trivial prerequisite. Without that condition, the flaw cannot be exploited, so the overall risk remains low to moderate depending on the likelihood of an earlier renderer compromise in the environment.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Google

Chrome

affected

Version	Status	Constraints
`149.0.7827.53`	affected	< 149.0.7827.53

Configuration 1 [-]

AND

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

OR	cpe:2.3:o:apple:macos:-:::::::*
	cpe:2.3:o:linux:linux_kernel:-:::::::*
	cpe:2.3:o:microsoft:windows:-:::::::*

No data.

Vendor Product Confidence Versions

Google

Chrome

100%

Version	Status	Scheme	Platform
`[149.0.7827.53,149.0.7827.53)`	affected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade Google Chrome to version 149.0.7827.53 or later
Enable site isolation or renderer process isolation policies if not already active
Monitor Chrome’s renderer processes for anomalous behavior and consider disabling untrusted renderer modules when possible

Generated by OpenCVE AI on June 7, 2026 at 15:51 UTC.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
Debian DSA	DSA-6325-1	chromium security update

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00176.

Exploitation none

Automatable no

Technical Impact partial

References

Link	Providers
https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html
https://issues.chromium.org/issues/494800494
https://nvd.nist.gov/vuln/detail/CVE-2026-11223
https://www.cve.org/CVERecord?id=CVE-2026-11223

History

Sun, 07 Jun 2026 12:15:00 +0000

Type	Values Removed	Values Added
Title		chromium-browser: Insufficient validation of untrusted input in Network
Weaknesses		CWE-346
References		https://nvd.nist.gov/vuln/detail/CVE-2026-11223 https://www.cve.org/CVERecord?id=CVE-2026-11223
Metrics	threat_severity `None`	threat_severity `Low`

Fri, 05 Jun 2026 20:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Apple Apple macos Linux Linux linux Kernel Microsoft Microsoft windows
CPEs		cpe:2.3:a:google:chrome:::::::: cpe:2.3:o:apple:macos:-:::::::* cpe:2.3:o:linux:linux_kernel:-:::::::* cpe:2.3:o:microsoft:windows:-:::::::*
Vendors & Products		Apple Apple macos Linux Linux linux Kernel Microsoft Microsoft windows

Fri, 05 Jun 2026 16:15:00 +0000

Type	Values Removed	Values Added
Title	Untrusted Input Allows Same‑Origin Policy Bypass in Chrome Renderer

Fri, 05 Jun 2026 14:30:00 +0000

Type	Values Removed	Values Added
Metrics		cvssV3_1 `{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Fri, 05 Jun 2026 04:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Google Google chrome
Vendors & Products		Google Google chrome

Fri, 05 Jun 2026 04:00:00 +0000

Type	Values Removed	Values Added
Title		Untrusted Input Allows Same‑Origin Policy Bypass in Chrome Renderer

Thu, 04 Jun 2026 23:15:00 +0000

Type	Values Removed	Values Added
Description		Insufficient validation of untrusted input in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. (Chromium security severity: Low)
Weaknesses		CWE-20
References		https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html https://issues.chromium.org/issues/494800494

Subscriptions

Apple Macos

Google Chrome

Linux Linux Kernel

Microsoft Windows

MITRE

Status: PUBLISHED

Assigner: Chrome

Published: 2026-06-04T23:05:51.018Z

Updated: 2026-06-05T13:44:39.651Z

Reserved: 2026-06-04T17:10:55.155Z

Link: CVE-2026-11223

Vulnrichment

Updated: 2026-06-05T13:44:35.415Z

NVD

Status : Analyzed

Published: 2026-06-04T23:17:30.033

Modified: 2026-06-05T20:21:56.487

Link: CVE-2026-11223

Redhat

Severity : Low

Publid Date: 2026-06-02T00:00:00Z

Links: CVE-2026-11223 - Bugzilla

OpenCVE Enrichment

Updated: 2026-06-07T16:00:04Z

Weaknesses

CWE-20
Improper Input Validation
CWE-346
Origin Validation Error

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction Required

Exploitation none

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object