Vulnerability-Lookup

WID-SEC-W-2026-1819

Vulnerability from csaf_certbund - Published: 2026-06-08 22:00 - Updated: 2026-06-14 22:00

Summary

Google Chrome / Microsoft Edge: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Chrome ist ein Internet-Browser von Google. Edge ist ein Internet-Browser von Microsoft.

Angriff: Ein Angreifer kann mehrere Schwachstellen in Google Chrome / Microsoft Edge ausnutzen, um beliebigen Programmcode auszuführen, Sicherheitsmaßnahmen zu umgehen, Daten zu manipulieren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder andere, nicht näher spezifizierte Angriffe durchzuführen.

Betroffene Betriebssysteme: - Linux - MacOS X - Windows

CVE-2026-11628

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11629

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11630

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11631

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11632

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11633

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11634

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11635

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11636

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11637

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11638

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11639

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11640

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11641

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11642

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11643

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11644

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11645

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11646

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11647

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11648

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11649

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11650

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11651

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11652

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11653

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11654

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11655

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11656

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11657

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11658

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11659

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11660

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11661

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11662

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11663

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11664

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11665

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11666

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11667

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11668

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11669

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11670

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11671

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11672

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11673

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11674

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11675

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11676

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11677

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11678

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11679

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11680

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11681

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11682

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11683

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11684

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11685

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11686

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11687

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11688

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11689

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11690

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11691

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11692

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11693

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11694

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11695

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11696

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11697

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11698

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11699

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11700

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2026-11701

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Google Chrome <149.0.7827.103 Google / Chrome		<149.0.7827.103
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Google Chrome <149.0.7827.102 Google / Chrome		<149.0.7827.102
Microsoft Edge <149.0.4022.53 Microsoft / Edge		<149.0.4022.53
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

References

12 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://chromereleases.googleblog.com/2026/06/sta…	external
https://learn.microsoft.com/en-us/deployedge/micr…	external
https://bodhi.fedoraproject.org/updates/FEDORA-EP…	external
https://security-tracker.debian.org/tracker/DSA-6337-1	external
https://bodhi.fedoraproject.org/updates/FEDORA-EP…	external
https://bodhi.fedoraproject.org/updates/FEDORA-EP…	external
https://bodhi.fedoraproject.org/updates/FEDORA-20…	external
https://bodhi.fedoraproject.org/updates/FEDORA-20…	external
https://lists.opensuse.org/archives/list/security…	external
https://lists.opensuse.org/archives/list/security…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Chrome ist ein Internet-Browser von Google.\r\nEdge ist ein Internet-Browser von Microsoft.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in Google Chrome / Microsoft Edge ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, Daten zu manipulieren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder andere, nicht n\u00e4her spezifizierte Angriffe durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- MacOS X\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2026-1819 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-1819.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2026-1819 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1819"
      },
      {
        "category": "external",
        "summary": "Chrome Releases: Stable Channel Update for Desktop vom 2026-06-08",
        "url": "https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0153744567.html"
      },
      {
        "category": "external",
        "summary": "Release notes for Microsoft Edge Security Updates vom 2026-06-10",
        "url": "https://learn.microsoft.com/en-us/deployedge/microsoft-edge-relnotes-security#june-8-2026"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-EPEL-2026-0CAFC6E293 vom 2026-06-11",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2026-0cafc6e293"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-6337 vom 2026-06-11",
        "url": "https://security-tracker.debian.org/tracker/DSA-6337-1"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-EPEL-2026-AF0DC4E356 vom 2026-06-11",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2026-af0dc4e356"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-EPEL-2026-9590D638C8 vom 2026-06-11",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2026-9590d638c8"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2026-C5C0986FB6 vom 2026-06-11",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-c5c0986fb6"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2026-2DEBC85B3C vom 2026-06-11",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-2debc85b3c"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2026:20944-1 vom 2026-06-13",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/BUNOINX4NOPFASRRVZCXZA3FBKCBFR44/"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2026:11008-1 vom 2026-06-14",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/XINRI6GZRJAKXIWC5TTR4EGSJSH3CQNB/"
      }
    ],
    "source_lang": "en-US",
    "title": "Google Chrome / Microsoft Edge: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2026-06-14T22:00:00.000+00:00",
      "generator": {
        "date": "2026-06-15T07:40:02.102+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.6.0"
        }
      },
      "id": "WID-SEC-W-2026-1819",
      "initial_release_date": "2026-06-08T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2026-06-08T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2026-06-10T22:00:00.000+00:00",
          "number": "2",
          "summary": "Edge Update aufgenommen"
        },
        {
          "date": "2026-06-11T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Fedora aufgenommen"
        },
        {
          "date": "2026-06-14T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von openSUSE aufgenommen"
        }
      ],
      "status": "final",
      "version": "4"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Fedora Linux",
            "product": {
              "name": "Fedora Linux",
              "product_id": "74185",
              "product_identification_helper": {
                "cpe": "cpe:/o:fedoraproject:fedora:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Fedora"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c149.0.7827.102",
                "product": {
                  "name": "Google Chrome \u003c149.0.7827.102",
                  "product_id": "T055050"
                }
              },
              {
                "category": "product_version",
                "name": "149.0.7827.102",
                "product": {
                  "name": "Google Chrome 149.0.7827.102",
                  "product_id": "T055050-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:google:chrome:149.0.7827.102"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c149.0.7827.103",
                "product": {
                  "name": "Google Chrome \u003c149.0.7827.103",
                  "product_id": "T055051"
                }
              },
              {
                "category": "product_version",
                "name": "149.0.7827.103",
                "product": {
                  "name": "Google Chrome 149.0.7827.103",
                  "product_id": "T055051-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:google:chrome:149.0.7827.103"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Chrome"
          }
        ],
        "category": "vendor",
        "name": "Google"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c149.0.4022.53",
                "product": {
                  "name": "Microsoft Edge \u003c149.0.4022.53",
                  "product_id": "T055206"
                }
              },
              {
                "category": "product_version",
                "name": "149.0.4022.53",
                "product": {
                  "name": "Microsoft Edge 149.0.4022.53",
                  "product_id": "T055206-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:edge:149.0.4022.53"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Edge"
          }
        ],
        "category": "vendor",
        "name": "Microsoft"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE openSUSE",
            "product": {
              "name": "SUSE openSUSE",
              "product_id": "T027843",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:opensuse:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-11628",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11628"
    },
    {
      "cve": "CVE-2026-11629",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11629"
    },
    {
      "cve": "CVE-2026-11630",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11630"
    },
    {
      "cve": "CVE-2026-11631",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11631"
    },
    {
      "cve": "CVE-2026-11632",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11632"
    },
    {
      "cve": "CVE-2026-11633",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11633"
    },
    {
      "cve": "CVE-2026-11634",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11634"
    },
    {
      "cve": "CVE-2026-11635",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11635"
    },
    {
      "cve": "CVE-2026-11636",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11636"
    },
    {
      "cve": "CVE-2026-11637",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11637"
    },
    {
      "cve": "CVE-2026-11638",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11638"
    },
    {
      "cve": "CVE-2026-11639",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11639"
    },
    {
      "cve": "CVE-2026-11640",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11640"
    },
    {
      "cve": "CVE-2026-11641",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11641"
    },
    {
      "cve": "CVE-2026-11642",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11642"
    },
    {
      "cve": "CVE-2026-11643",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11643"
    },
    {
      "cve": "CVE-2026-11644",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11644"
    },
    {
      "cve": "CVE-2026-11645",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11645"
    },
    {
      "cve": "CVE-2026-11646",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11646"
    },
    {
      "cve": "CVE-2026-11647",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11647"
    },
    {
      "cve": "CVE-2026-11648",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11648"
    },
    {
      "cve": "CVE-2026-11649",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11649"
    },
    {
      "cve": "CVE-2026-11650",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11650"
    },
    {
      "cve": "CVE-2026-11651",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11651"
    },
    {
      "cve": "CVE-2026-11652",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11652"
    },
    {
      "cve": "CVE-2026-11653",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11653"
    },
    {
      "cve": "CVE-2026-11654",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11654"
    },
    {
      "cve": "CVE-2026-11655",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11655"
    },
    {
      "cve": "CVE-2026-11656",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11656"
    },
    {
      "cve": "CVE-2026-11657",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11657"
    },
    {
      "cve": "CVE-2026-11658",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11658"
    },
    {
      "cve": "CVE-2026-11659",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11659"
    },
    {
      "cve": "CVE-2026-11660",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11660"
    },
    {
      "cve": "CVE-2026-11661",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11661"
    },
    {
      "cve": "CVE-2026-11662",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11662"
    },
    {
      "cve": "CVE-2026-11663",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11663"
    },
    {
      "cve": "CVE-2026-11664",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11664"
    },
    {
      "cve": "CVE-2026-11665",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11665"
    },
    {
      "cve": "CVE-2026-11666",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11666"
    },
    {
      "cve": "CVE-2026-11667",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11667"
    },
    {
      "cve": "CVE-2026-11668",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11668"
    },
    {
      "cve": "CVE-2026-11669",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11669"
    },
    {
      "cve": "CVE-2026-11670",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11670"
    },
    {
      "cve": "CVE-2026-11671",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11671"
    },
    {
      "cve": "CVE-2026-11672",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11672"
    },
    {
      "cve": "CVE-2026-11673",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11673"
    },
    {
      "cve": "CVE-2026-11674",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11674"
    },
    {
      "cve": "CVE-2026-11675",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11675"
    },
    {
      "cve": "CVE-2026-11676",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11676"
    },
    {
      "cve": "CVE-2026-11677",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11677"
    },
    {
      "cve": "CVE-2026-11678",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11678"
    },
    {
      "cve": "CVE-2026-11679",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11679"
    },
    {
      "cve": "CVE-2026-11680",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11680"
    },
    {
      "cve": "CVE-2026-11681",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11681"
    },
    {
      "cve": "CVE-2026-11682",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11682"
    },
    {
      "cve": "CVE-2026-11683",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11683"
    },
    {
      "cve": "CVE-2026-11684",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11684"
    },
    {
      "cve": "CVE-2026-11685",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11685"
    },
    {
      "cve": "CVE-2026-11686",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11686"
    },
    {
      "cve": "CVE-2026-11687",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11687"
    },
    {
      "cve": "CVE-2026-11688",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11688"
    },
    {
      "cve": "CVE-2026-11689",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11689"
    },
    {
      "cve": "CVE-2026-11690",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11690"
    },
    {
      "cve": "CVE-2026-11691",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11691"
    },
    {
      "cve": "CVE-2026-11692",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11692"
    },
    {
      "cve": "CVE-2026-11693",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11693"
    },
    {
      "cve": "CVE-2026-11694",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11694"
    },
    {
      "cve": "CVE-2026-11695",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11695"
    },
    {
      "cve": "CVE-2026-11696",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11696"
    },
    {
      "cve": "CVE-2026-11697",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11697"
    },
    {
      "cve": "CVE-2026-11698",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11698"
    },
    {
      "cve": "CVE-2026-11699",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11699"
    },
    {
      "cve": "CVE-2026-11700",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11700"
    },
    {
      "cve": "CVE-2026-11701",
      "product_status": {
        "known_affected": [
          "2951",
          "T055051",
          "T027843",
          "T055050",
          "T055206",
          "74185"
        ]
      },
      "release_date": "2026-06-08T22:00:00.000+00:00",
      "title": "CVE-2026-11701"
    }
  ]
}

CVE-2026-11628 (GCVE-0-2026-11628)

Vulnerability from cvelistv5 – Published: 2026-06-08 23:27 – Updated: 2026-06-09 01:51

Summary

Use after free in Ozone in Google Chrome prior to 149.0.7827.103 allowed a local attacker to potentially exploit heap corruption via physical access to the device. (Chromium security severity: Critical)

Severity

6.8 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: total

CISA Coordinator (v2.0.3)

CWE

CWE-416 - Use after free

Assigner

Chrome

References

2 references

URL	Tags
https://chromereleases.googleblog.com/2026/06/sta…
https://issues.chromium.org/issues/516501794

Impacted products

1 product

Vendor	Product	Version
Google	Chrome	Affected: 149.0.7827.103 , < 149.0.7827.103 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "PHYSICAL",
              "availabilityImpact": "HIGH",
              "baseScore": 6.8,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-11628",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-06-09T01:51:34.517073Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-09T01:51:39.968Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Chrome",
          "vendor": "Google",
          "versions": [
            {
              "lessThan": "149.0.7827.103",
              "status": "affected",
              "version": "149.0.7827.103",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Use after free in Ozone in Google Chrome prior to 149.0.7827.103 allowed a local attacker to potentially exploit heap corruption via physical access to the device. (Chromium security severity: Critical)"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-416",
              "description": "Use after free",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-08T23:27:21.029Z",
        "orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
        "shortName": "Chrome"
      },
      "references": [
        {
          "url": "https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0153744567.html"
        },
        {
          "url": "https://issues.chromium.org/issues/516501794"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
    "assignerShortName": "Chrome",
    "cveId": "CVE-2026-11628",
    "datePublished": "2026-06-08T23:27:21.029Z",
    "dateReserved": "2026-06-08T21:33:31.447Z",
    "dateUpdated": "2026-06-09T01:51:39.968Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-11629 (GCVE-0-2026-11629)

Vulnerability from cvelistv5 – Published: 2026-06-08 23:27 – Updated: 2026-06-10 03:58

Summary

Use after free in Ozone in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)

Severity

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: total

CISA Coordinator (v2.0.3)

CWE

CWE-416 - Use after free

Assigner

Chrome

References

2 references

URL	Tags
https://chromereleases.googleblog.com/2026/06/sta…
https://issues.chromium.org/issues/516674532

Impacted products

1 product

Vendor	Product	Version
Google	Chrome	Affected: 149.0.7827.103 , < 149.0.7827.103 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 8.8,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-11629",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-06-09T00:00:00+00:00",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-10T03:58:10.915Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Chrome",
          "vendor": "Google",
          "versions": [
            {
              "lessThan": "149.0.7827.103",
              "status": "affected",
              "version": "149.0.7827.103",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Use after free in Ozone in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-416",
              "description": "Use after free",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-08T23:27:21.792Z",
        "orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
        "shortName": "Chrome"
      },
      "references": [
        {
          "url": "https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0153744567.html"
        },
        {
          "url": "https://issues.chromium.org/issues/516674532"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
    "assignerShortName": "Chrome",
    "cveId": "CVE-2026-11629",
    "datePublished": "2026-06-08T23:27:21.792Z",
    "dateReserved": "2026-06-08T21:33:31.817Z",
    "dateUpdated": "2026-06-10T03:58:10.915Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-11630 (GCVE-0-2026-11630)

Vulnerability from cvelistv5 – Published: 2026-06-08 23:27 – Updated: 2026-06-10 03:58

Summary

Use after free in File Input in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)

Severity

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: total

CISA Coordinator (v2.0.3)

CWE

CWE-416 - Use after free

Assigner

Chrome

References

2 references

URL	Tags
https://chromereleases.googleblog.com/2026/06/sta…
https://issues.chromium.org/issues/516677924

Impacted products

1 product

Vendor	Product	Version
Google	Chrome	Affected: 149.0.7827.103 , < 149.0.7827.103 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 8.8,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-11630",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-06-09T00:00:00+00:00",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-10T03:58:09.402Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Chrome",
          "vendor": "Google",
          "versions": [
            {
              "lessThan": "149.0.7827.103",
              "status": "affected",
              "version": "149.0.7827.103",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Use after free in File Input in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-416",
              "description": "Use after free",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-08T23:27:22.584Z",
        "orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
        "shortName": "Chrome"
      },
      "references": [
        {
          "url": "https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0153744567.html"
        },
        {
          "url": "https://issues.chromium.org/issues/516677924"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
    "assignerShortName": "Chrome",
    "cveId": "CVE-2026-11630",
    "datePublished": "2026-06-08T23:27:22.584Z",
    "dateReserved": "2026-06-08T21:33:32.283Z",
    "dateUpdated": "2026-06-10T03:58:09.402Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-11631 (GCVE-0-2026-11631)

Vulnerability from cvelistv5 – Published: 2026-06-08 23:27 – Updated: 2026-06-10 03:58

Summary

Use after free in Aura in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

Severity

8.3 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: total

CISA Coordinator (v2.0.3)

CWE

CWE-416 - Use after free

Assigner

Chrome

References

2 references

URL	Tags
https://chromereleases.googleblog.com/2026/06/sta…
https://issues.chromium.org/issues/516691130

Impacted products

1 product

Vendor	Product	Version
Google	Chrome	Affected: 149.0.7827.103 , < 149.0.7827.103 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "HIGH",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 8.3,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "CHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-11631",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-06-09T00:00:00+00:00",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-10T03:58:19.214Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Chrome",
          "vendor": "Google",
          "versions": [
            {
              "lessThan": "149.0.7827.103",
              "status": "affected",
              "version": "149.0.7827.103",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Use after free in Aura in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-416",
              "description": "Use after free",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-08T23:27:23.121Z",
        "orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
        "shortName": "Chrome"
      },
      "references": [
        {
          "url": "https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0153744567.html"
        },
        {
          "url": "https://issues.chromium.org/issues/516691130"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
    "assignerShortName": "Chrome",
    "cveId": "CVE-2026-11631",
    "datePublished": "2026-06-08T23:27:23.121Z",
    "dateReserved": "2026-06-08T21:33:32.692Z",
    "dateUpdated": "2026-06-10T03:58:19.214Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-11632 (GCVE-0-2026-11632)

Vulnerability from cvelistv5 – Published: 2026-06-08 23:27 – Updated: 2026-06-09 03:55

Summary

Use after free in TabStrip in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)

Severity

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: total

CISA Coordinator (v2.0.3)

CWE

CWE-416 - Use after free

Assigner

Chrome

References

2 references

URL	Tags
https://chromereleases.googleblog.com/2026/06/sta…
https://issues.chromium.org/issues/516707881

Impacted products

1 product

Vendor	Product	Version
Google	Chrome	Affected: 149.0.7827.103 , < 149.0.7827.103 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "HIGH",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 7.5,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-11632",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-06-08T00:00:00+00:00",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-09T03:55:56.038Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Chrome",
          "vendor": "Google",
          "versions": [
            {
              "lessThan": "149.0.7827.103",
              "status": "affected",
              "version": "149.0.7827.103",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Use after free in TabStrip in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-416",
              "description": "Use after free",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-08T23:27:23.642Z",
        "orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
        "shortName": "Chrome"
      },
      "references": [
        {
          "url": "https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0153744567.html"
        },
        {
          "url": "https://issues.chromium.org/issues/516707881"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
    "assignerShortName": "Chrome",
    "cveId": "CVE-2026-11632",
    "datePublished": "2026-06-08T23:27:23.642Z",
    "dateReserved": "2026-06-08T21:33:33.073Z",
    "dateUpdated": "2026-06-09T03:55:56.038Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-11633 (GCVE-0-2026-11633)

Vulnerability from cvelistv5 – Published: 2026-06-08 23:27 – Updated: 2026-06-09 03:55

Summary

Use after free in Bluetooth in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via a malicious peripheral. (Chromium security severity: Critical)

Severity

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: total

CISA Coordinator (v2.0.3)

CWE

CWE-416 - Use after free

Assigner

Chrome

References

2 references

URL	Tags
https://chromereleases.googleblog.com/2026/06/sta…
https://issues.chromium.org/issues/516963272

Impacted products

1 product

Vendor	Product	Version
Google	Chrome	Affected: 149.0.7827.103 , < 149.0.7827.103 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 8.8,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-11633",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-06-08T00:00:00+00:00",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-09T03:55:54.967Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Chrome",
          "vendor": "Google",
          "versions": [
            {
              "lessThan": "149.0.7827.103",
              "status": "affected",
              "version": "149.0.7827.103",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Use after free in Bluetooth in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via a malicious peripheral. (Chromium security severity: Critical)"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-416",
              "description": "Use after free",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-08T23:27:24.235Z",
        "orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
        "shortName": "Chrome"
      },
      "references": [
        {
          "url": "https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0153744567.html"
        },
        {
          "url": "https://issues.chromium.org/issues/516963272"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
    "assignerShortName": "Chrome",
    "cveId": "CVE-2026-11633",
    "datePublished": "2026-06-08T23:27:24.235Z",
    "dateReserved": "2026-06-08T21:33:33.494Z",
    "dateUpdated": "2026-06-09T03:55:54.967Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-11634 (GCVE-0-2026-11634)

Vulnerability from cvelistv5 – Published: 2026-06-08 23:27 – Updated: 2026-06-09 03:56

Summary

Use after free in Gamepad in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

Severity

9.6 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: total

CISA Coordinator (v2.0.3)

CWE

CWE-416 - Use after free

Assigner

Chrome

References

2 references

URL	Tags
https://chromereleases.googleblog.com/2026/06/sta…
https://issues.chromium.org/issues/516975148

Impacted products

1 product

Vendor	Product	Version
Google	Chrome	Affected: 149.0.7827.103 , < 149.0.7827.103 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 9.6,
              "baseSeverity": "CRITICAL",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "CHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-11634",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-06-08T00:00:00+00:00",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-09T03:56:17.494Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Chrome",
          "vendor": "Google",
          "versions": [
            {
              "lessThan": "149.0.7827.103",
              "status": "affected",
              "version": "149.0.7827.103",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Use after free in Gamepad in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-416",
              "description": "Use after free",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-08T23:27:24.849Z",
        "orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
        "shortName": "Chrome"
      },
      "references": [
        {
          "url": "https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0153744567.html"
        },
        {
          "url": "https://issues.chromium.org/issues/516975148"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
    "assignerShortName": "Chrome",
    "cveId": "CVE-2026-11634",
    "datePublished": "2026-06-08T23:27:24.849Z",
    "dateReserved": "2026-06-08T21:33:33.889Z",
    "dateUpdated": "2026-06-09T03:56:17.494Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-11635 (GCVE-0-2026-11635)

Vulnerability from cvelistv5 – Published: 2026-06-08 23:27 – Updated: 2026-06-09 03:56

Summary

Use after free in Bluetooth in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

Severity

8.3 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: total

CISA Coordinator (v2.0.3)

CWE

CWE-416 - Use after free

Assigner

Chrome

References

2 references

URL	Tags
https://chromereleases.googleblog.com/2026/06/sta…
https://issues.chromium.org/issues/516987814

Impacted products

1 product

Vendor	Product	Version
Google	Chrome	Affected: 149.0.7827.103 , < 149.0.7827.103 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "HIGH",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 8.3,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "CHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-11635",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-06-08T00:00:00+00:00",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-09T03:56:16.218Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Chrome",
          "vendor": "Google",
          "versions": [
            {
              "lessThan": "149.0.7827.103",
              "status": "affected",
              "version": "149.0.7827.103",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Use after free in Bluetooth in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-416",
              "description": "Use after free",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-08T23:27:25.496Z",
        "orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
        "shortName": "Chrome"
      },
      "references": [
        {
          "url": "https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0153744567.html"
        },
        {
          "url": "https://issues.chromium.org/issues/516987814"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
    "assignerShortName": "Chrome",
    "cveId": "CVE-2026-11635",
    "datePublished": "2026-06-08T23:27:25.496Z",
    "dateReserved": "2026-06-08T21:33:34.259Z",
    "dateUpdated": "2026-06-09T03:56:16.218Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-11636 (GCVE-0-2026-11636)

Vulnerability from cvelistv5 – Published: 2026-06-08 23:27 – Updated: 2026-06-10 03:58

Summary

Use after free in Autofill in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)

Severity

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: total

CISA Coordinator (v2.0.3)

CWE

CWE-416 - Use after free

Assigner

Chrome

References

2 references

URL	Tags
https://chromereleases.googleblog.com/2026/06/sta…
https://issues.chromium.org/issues/517023053

Impacted products

1 product

Vendor	Product	Version
Google	Chrome	Affected: 149.0.7827.103 , < 149.0.7827.103 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "HIGH",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 7.5,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-11636",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-06-09T00:00:00+00:00",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-10T03:58:12.362Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Chrome",
          "vendor": "Google",
          "versions": [
            {
              "lessThan": "149.0.7827.103",
              "status": "affected",
              "version": "149.0.7827.103",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Use after free in Autofill in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-416",
              "description": "Use after free",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-08T23:27:26.156Z",
        "orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
        "shortName": "Chrome"
      },
      "references": [
        {
          "url": "https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0153744567.html"
        },
        {
          "url": "https://issues.chromium.org/issues/517023053"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
    "assignerShortName": "Chrome",
    "cveId": "CVE-2026-11636",
    "datePublished": "2026-06-08T23:27:26.156Z",
    "dateReserved": "2026-06-08T21:33:34.665Z",
    "dateUpdated": "2026-06-10T03:58:12.362Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-11637 (GCVE-0-2026-11637)

Vulnerability from cvelistv5 – Published: 2026-06-08 23:27 – Updated: 2026-06-09 03:55

Summary

Use after free in Views in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)

Severity

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: total

CISA Coordinator (v2.0.3)

CWE

CWE-416 - Use after free

Assigner

Chrome

References

2 references

URL	Tags
https://chromereleases.googleblog.com/2026/06/sta…
https://issues.chromium.org/issues/517040438

Impacted products

1 product

Vendor	Product	Version
Google	Chrome	Affected: 149.0.7827.103 , < 149.0.7827.103 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 8.8,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-11637",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-06-08T00:00:00+00:00",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-09T03:55:53.831Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Chrome",
          "vendor": "Google",
          "versions": [
            {
              "lessThan": "149.0.7827.103",
              "status": "affected",
              "version": "149.0.7827.103",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Use after free in Views in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-416",
              "description": "Use after free",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-08T23:27:26.691Z",
        "orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
        "shortName": "Chrome"
      },
      "references": [
        {
          "url": "https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0153744567.html"
        },
        {
          "url": "https://issues.chromium.org/issues/517040438"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
    "assignerShortName": "Chrome",
    "cveId": "CVE-2026-11637",
    "datePublished": "2026-06-08T23:27:26.691Z",
    "dateReserved": "2026-06-08T21:33:35.068Z",
    "dateUpdated": "2026-06-09T03:55:53.831Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

WID-SEC-W-2026-1819

CVE-2026-11628 (GCVE-0-2026-11628)

CVE-2026-11629 (GCVE-0-2026-11629)

CVE-2026-11630 (GCVE-0-2026-11630)

CVE-2026-11631 (GCVE-0-2026-11631)

CVE-2026-11632 (GCVE-0-2026-11632)

CVE-2026-11633 (GCVE-0-2026-11633)

CVE-2026-11634 (GCVE-0-2026-11634)

CVE-2026-11635 (GCVE-0-2026-11635)

CVE-2026-11636 (GCVE-0-2026-11636)

CVE-2026-11637 (GCVE-0-2026-11637)

Tags

Sightings

Nomenclature