CVE-2026-12460

An insufficient policy enforcement flaw was found in the File System Access component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=517484284...

SUSE CVE-2026-12024

Insufficient policy enforcement in DevTools in Google Chrome prior to 149.0.7827.115 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: High...

CVE-2026-11309

An insufficient policy enforcement flaw was found in the History component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=506392934...

CVE-2026-11275

An insufficient policy enforcement flaw was found in the Page Info component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=501763121...

CVE-2026-11263

An insufficient policy enforcement flaw was found in the WebAuthentication component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=500044225...

CVE-2026-11247

An insufficient policy enforcement flaw was found in the CustomTabs component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=497865734...

CVE-2026-11236

An insufficient policy enforcement flaw was found in the Web Bluetooth component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=496427030...

CVE-2026-11212

An insufficient policy enforcement flaw was found in the DevTools component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=507216833...

CVE-2026-11190

An insufficient policy enforcement flaw was found in the Extensions component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=503375371...

CVE-2026-11187

An insufficient policy enforcement flaw was found in the Glic component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=502819675...

CVE-2026-11162

An insufficient policy enforcement flaw was found in the CSS component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=502035074...

CVE-2026-11155

An insufficient policy enforcement flaw was found in the CSS component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=501801823...

CVE-2026-11092

An insufficient policy enforcement flaw was found in the DevTools component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=500170887...

CVE-2026-11062

An insufficient policy enforcement flaw was found in the Extensions component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=499033012...

CVE-2026-11026

An insufficient policy enforcement flaw was found in the Extensions component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=497599683...

CVE-2026-11014

An insufficient policy enforcement flaw was found in the Extensions component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=497058611...

CVE-2026-10997

An insufficient policy enforcement flaw was found in the Extensions component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=464217867...

SUSE CVE-2026-11206

Insufficient policy enforcement in ServiceWorker in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

CVE-2026-42278

UltraDAG is a minimal DAG-BFT blockchain in Rust. Prior to commit fb6ef59, the UltraDAG StateEngine implementation of SmartTransferTx contains a critical logic flaw in its policy enforcement pipeline. When a transaction originates from a "Pocket" a derived sub-address documented in the protocol a...

Chromium: CVE-2026-11135 Insufficient policy enforcement in Autofill

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...