Articles from June 10, 2026
Browse all Windows news articles published on June 10, 2026
CVE-2026-11290: Chrome Android WebView Integer Overflow—Why “Low” Still Matters
Google published CVE-2026-11290 on June 4, 2026, describing a low-severity integer overflow in Chrome’s Android WebView before version 149.0.7827.53 that could let a local attacker trigger a denial of
CVE-2026-11278: Chrome Android Custom Tabs Info Leak—What IT Teams Should Do
Google Chrome on Android versions before 149.0.7827.53 contained CVE-2026-11278, a Custom Tabs origin-validation flaw disclosed on June 4, 2026, that could let a local attacker leak cross-origin data
CVE-2026-11270: Patch Chrome for Android 149.0.7827.53+ to Stop Cross-Origin Leaks
CVE-2026-11270 is a Google Chrome for Android vulnerability published on June 4, 2026, affecting versions before 149.0.7827.53 and allowing a remote attacker to leak cross-origin data through a crafte
CVE-2026-11247: Low-Severity Chrome Android Bug in Custom Tabs Could Leak Data
CVE-2026-11247 is a low-severity Chrome for Android vulnerability, disclosed June 4, 2026 and fixed before version 149.0.7827.53, in which insufficient policy enforcement in Custom Tabs could let a re
CVE-2026-11215: Chrome on Android Cronet Domain Spoofing—What to Patch Now
Google’s CVE-2026-11215, published June 4, 2026 and modified June 5, describes a medium-severity Chrome-on-Android flaw in Cronet before version 149.0.7827.53 that could let a remote attacker spoof a
CVE-2026-11172 Chrome Android Contact Picker UI Spoofing: What Enterprises Must Do
Google Chrome on Android before version 149.0.7827.53 contains CVE-2026-11172, a medium-severity Chromium flaw published June 4, 2026, in which incorrect Contact Picker security UI could let a remote
CVE-2026-11167: Chrome Android WebView Sandbox Escape—Why Metadata Matters
CVE-2026-11167 is a newly published Chrome-for-Android WebView vulnerability, disclosed on June 4, 2026, affecting Google Chrome versions before 149.0.7827.53 and describing a potential sandbox escape
CVE-2026-11163: Chrome Android Use-After-Free, Sandbox Escape, Patch by 149.0.7827.53
CVE-2026-11163 is a Chrome on Android use-after-free flaw in the browser’s Messages component, disclosed June 4, 2026, fixed before version 149.0.7827.53, and described as allowing a remote attacker t
CVE-2026-11127: Chrome for Android WebAPK Domain Spoofing (Patch to 149.0.7827.53)
Google disclosed CVE-2026-11127 on June 4, 2026, as a medium-severity Chrome for Android flaw in WebAPKs that affected versions before 149.0.7827.53 and could let a remote attacker spoof a domain thro
CVE-2026-11077 Dawn Bug: Why Chrome Updates Are Urgent on Windows
Google Chrome before 149.0.7827.53 contains CVE-2026-11077, a medium-severity Chromium flaw in Dawn that was published by the Chrome CVE program on June 4, 2026, and described as enabling sandboxed co
CVE-2026-11064: Chrome Android GPU race leak—CPE mismatch and patch guidance
Google Chrome on Android before version 149.0.7827.53 is listed as vulnerable to CVE-2026-11064, a medium-severity GPU race condition disclosed June 4, 2026, that can let an attacker with renderer com
CVE-2026-11034: Chrome Android Tab Group Sync UXSS and CPE Metadata Confusion
Google’s CVE-2026-11034 entry describes a medium-severity Chrome-on-Android flaw fixed before version 149.0.7827.53, where insufficient validation in Tab Group Sync could let a remote attacker inject