Description
Inappropriate implementation in MediaCapture in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)
Published: 2026-06-08
Score: 4.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

An insecure MediaCapture implementation in Google Chrome on macOS released before version 149.0.7827.103 allows a remote attacker to craft a malicious HTML page that can read data from a cross‑origin context and expose it to the attacker. The flaw effectively results in an Information Exposure vulnerability, enabling the attacker to obtain sensitive information that should be isolated to the original origin. The impact is restricted to confidentiality breach for content accessed through MediaCapture, with no direct denial of service or code execution reported.

Affected Systems

This vulnerability affects Apple macOS users running Google Chrome versions earlier than 149.0.7827.103. The affected product is specifically the Chrome browser on Mac, and the safe version threshold is 149.0.7827.103 and later.

Risk and Exploitability

The flaw is remotely exploitable via a crafted HTML page, requiring the victim to load the page in Chrome on macOS. The Chromium security severity is listed as High, and the CVSS score of 4.3 indicates moderate severity. The EPSS score of 0.00033 (approximately 0.033%) indicates a very low but nonzero probability of exploitation, and the vulnerability is not listed in the CISA KEV catalog. An attacker who successfully victimizes a user’s browser can extract confidential data through the MediaCapture interface. No privilege escalation or local execution is required. Despite the low EPSS probability, the High severity rating indicates a serious consequence if the flaw is abused.

Generated by OpenCVE AI on June 11, 2026 at 02:36 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the vendor-published patch by upgrading to Google Chrome 149.0.7827.103 or later, which addresses the input validation flaw (CWE‑20) and adds proper origin checks for MediaCapture (CWE‑346).
  • If an immediate update is not feasible, disable or restrict the MediaCapture API in the browser configuration to prevent unauthorized cross‑origin media access, thereby mitigating the weaknesses identified by CWE‑20 and CWE‑346 until the patch can be deployed.
  • Enforce an enterprise update policy to ensure all macOS machines receive the security update promptly, narrowing the window for exploitation.

Generated by OpenCVE AI on June 11, 2026 at 02:36 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DSA Debian DSA DSA-6337-1 chromium security update
History

Thu, 11 Jun 2026 00:15:00 +0000

Type Values Removed Values Added
Title chromium-browser: Insufficient data validation in MediaCapture
Weaknesses CWE-346
References
Metrics threat_severity

None

 threat_severity

Important

Tue, 09 Jun 2026 15:00:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
CPEs cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
Vendors & Products Apple
Apple macos

Tue, 09 Jun 2026 04:45:00 +0000

Type Values Removed Values Added
Title Cross‑origin Data Leakage via MediaCapture in Chrome on Mac
Weaknesses CWE-200

Tue, 09 Jun 2026 02:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-20
Metrics cvssV3_1

{'score': 4.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 09 Jun 2026 02:00:00 +0000

Type Values Removed Values Added
Title Cross‑origin Data Leakage via MediaCapture in Chrome on Mac
Weaknesses CWE-200

Tue, 09 Jun 2026 01:00:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Mon, 08 Jun 2026 23:45:00 +0000

Type Values Removed Values Added
Description Inappropriate implementation in MediaCapture in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)
References

Subscriptions

Apple Macos
Google Chrome
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-06-09T01:25:23.105Z

Reserved: 2026-06-08T21:33:52.725Z

Link: CVE-2026-11685

cve-icon Vulnrichment

Updated: 2026-06-09T01:25:17.981Z

cve-icon NVD

Status : Analyzed

Published: 2026-06-09T00:16:51.900

Modified: 2026-06-09T14:51:52.990

Link: CVE-2026-11685

cve-icon Redhat

Severity : Important

Publid Date: 2026-06-08T00:00:00Z

Links: CVE-2026-11685 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-06-11T02:45:03Z

Weaknesses
  • CWE-20

    Improper Input Validation

  • CWE-346

    Origin Validation Error