Skip to main content

Google Chrome CVE-2026-11668

| EUVD-2026-35268 MEDIUM
Use of Uninitialized Variable (CWE-457)
2026-06-09 chrome-cve-admin@google.com GHSA-w669-6jc5-cg7f
Information Disclosure Google Red Hat Suse
Medium
Disputed · 4.3 NVD
Share

Severity by source

Sources disagree (Medium–Critical)
NVD PRIMARY
4.3 MEDIUM
AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
SUSE
CRITICAL
qualitative
Red Hat
6.5 HIGH
qualitative

vuln.today treats the vendor’s rating as authoritative. A higher third-party CVSS (e.g. CISA-ADP) is shown for transparency but does not drive the headline severity.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
Low
Integrity
None
Availability
None

Lifecycle Timeline

4
Analysis Generated
Jun 09, 2026 - 03:00 vuln.today
CVSS changed
Jun 09, 2026 - 02:22 NVD
4.3 (MEDIUM)
CVE Published
Jun 09, 2026 - 00:16 nvd
UNKNOWN (no severity yet)
CVE Published
Jun 09, 2026 - 00:16 nvd
MEDIUM 4.3

DescriptionCVE.org

Uninitialized Use in Codecs in Google Chrome on Linux, ChromeOS prior to 149.0.7827.103 allowed a remote attacker to leak cross-origin data via a crafted video file. (Chromium security severity: High)

AnalysisAI

Cross-origin data leakage in Google Chrome's codec subsystem on Linux and ChromeOS (versions prior to 149.0.7827.103) enables remote unauthenticated attackers to exfiltrate sensitive data from other origins by delivering a specially crafted video file to a target user. The root cause is uninitialized memory use (CWE-457) within the codec pipeline, where memory contents from other origin contexts may be exposed during video processing. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Attacker crafts malicious video file
Delivery
Hosts file on attacker-controlled web page
Exploit
Victim on Linux/ChromeOS Chrome visits page
Execution
Chrome codec processes video with uninitialized memory
Persist
Cross-origin memory contents exposed
Impact
Attacker receives leaked data
Sign in to reveal

Vulnerability AssessmentAI

Exploitation The victim must be running Google Chrome on Linux or ChromeOS (Windows and macOS are not listed as affected - this is a platform-scoped vulnerability). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 base score of 4.3 (Medium) with vector AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N accurately reflects a moderate, bounded risk profile. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker hosts a malicious web page embedding a specially crafted video file designed to trigger the uninitialized codec memory path in Chrome on Linux or ChromeOS. When a targeted user visits the page and the video begins processing, residual cross-origin memory contents are exposed to the attacker-controlled context and exfiltrated - potentially including fragments of data from other open tabs or prior codec operations. …
Remediation The primary remediation is to update Google Chrome to version 149.0.7827.103 or later, as confirmed by the vendor advisory at chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0153744567.html. … Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Threat intelligence, references, and detailed analysis are available after sign-in.

Vendor StatusVendor

SUSE

Severity: Critical
Product Status
openSUSE Leap 16.0 Fixed
openSUSE Tumbleweed Fixed

Share

CVE-2026-11668 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy