PT-2026-46649 · Google · Google Chrome
Published
2026-06-02
·
Updated
2026-06-04
·
CVE-2026-11122
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions
Google Chrome versions prior to 149.0.7827.53
Description
An inappropriate implementation in the Keyboard component allows a remote attacker to perform Universal Cross-Site Scripting (UXSS), which is the ability to execute scripts across different origins, by using a crafted HTML page to inject arbitrary scripts or HTML.
Recommendations
Update to version 149.0.7827.53 or later.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Google Chrome