CVE-2026-11205

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML (UXSS) via a crafted QR code. (Chromium security severity: Medium)

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2026-11205

Affected Products

Google Chrome

CVE-2026-11205

Weakness Enumeration

Related Identifiers

Affected Products

References · 3