You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve-2026-11668
About this tag
CVE-2026-11668 is a high-severity Chromium codecs vulnerability disclosed by Google on June 8, 2026, affecting Google Chrome on Linux and ChromeOS before version 149.0.7827.103. The flaw allows a remote attacker to leak cross-origin data via a crafted video file, undermining browser site isolation. While the immediate Windows exposure appears limited per the published affected platforms, Windows administrators should monitor for potential cross-platform implications and apply Chrome updates promptly. The vulnerability underscores the importance of keeping browsers patched to prevent data leaks from malicious video content.
Google disclosed CVE-2026-11668 on June 8, 2026, as a high-severity Chromium codecs flaw affecting Google Chrome on Linux and ChromeOS before version 149.0.7827.103, where a crafted video file could let a remote attacker leak cross-origin data. The bug is not the loudest item in the June Chrome...