[Low] CVE-2026-11684 – Insufficient policy enforcement in Network in Google Chrome prior to 149.0.7827...
Low CVE-2026-11684 Insufficient policy enforcement in Network in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the utility process to leak cross-origin data via a crafted HTML page. (Chromium security severity: High) CVSS: 3.1 · CWE: CWE-693 View on NVD