CVE-2026-11326 | THREATINT

Description

OpenAI Atlas before 1.2025.288.15 exposed privileged browser APIs to web content on *.openai.com origins. A cross-site scripting vulnerability in forum.openai.com could be used to access these functions, allowing access to browser history information and the ability to open or close tabs. OpenAI Atlas 1.2025.288.15 narrows access to these APIs to *.chatgpt.com; users should upgrade to 1.2025.288.15 or later.

PUBLISHED Reserved 2026-06-05 | Published 2026-06-05 | Updated 2026-06-05 | Assigner OAI

MEDIUM: 6.0CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/AU:N/V:D/RE:L/U:Green

Problem types

CWE-284 Improper Access Control

Product status

Default status

unaffected

Any version before 1.2025.288.15

affected

Credits

s1r1us and sudi of hacktron.ai finder

References

www.hacktron.ai/blog/hacking-openai-atlas-browser (Pwning OpenAI Atlas Through Exposed Browser Internals) technical-description

cve.org (CVE-2026-11326)

nvd.nist.gov (CVE-2026-11326)

Download JSON