CVE-2026-11288

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Insufficient policy enforcement in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2026-11288

Affected Products

Google Chrome

CVE-2026-11288

Related Identifiers

Affected Products

References · 3