CVE-2026-11697 - AskarLabs CVE Database

CVE-2026-11697

Vendor Google

Product Chrome

Weakness CWE-20 · Input validation

Published June 8, 2026

Last update June 10, 2026

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

Insufficient validation of untrusted input in UI in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

Key dates

02Disclosure timeline

June 8, 2026 CVE published

June 10, 2026 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2026-11697 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/20.html

Related vulnerabilities

04Related CVE

CVE-2026-3641 Appmax <= 1.0.3 - Missing Authorization to Order Status Manipulation and Arbitrary Order Creation via Webhook Endpoint CVE-2023-36872 VP9 Video Extensions Information Disclosure Vulnerability CVE-2025-32077 XSSes in Extension:SimpleCalendar CVE-2021-31372 Junos OS: J-Web allows a locally authenticated attacker to escalate their privileges to root. CVE-2026-7943