Chromium: CVE-2026-11309 Insufficient policy enforcement in History

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Linux Distros Unpatched Vulnerability : CVE-2026-11309

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient policy enforcement in History in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page...

CVE-2026-11309

Insufficient policy enforcement in History in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

CVE-2026-11309

CVE-2026-11309 affects Google Chrome (Chromium-based) where insufficient policy enforcement in History permits a remote attacker to spoof UI via a crafted HTML page. Affected versions before 149.0.7827.53 are vulnerable; Chrome 149.0.7827.53 and later mitigate. Root cause is policy enforcement ga...