Sign In

CVE-2026-11238

ADVISORY - nist

Summary

Inappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from process memory via a crafted Chrome Extension. (Chromium security severity: Low)

EPSS Score: 0.00015 (0.031)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-306

Missing Authentication for Critical Function

Impacted images

Advisories
Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.

Sign in