CVE-2026-0628 – Google Gemini Security Update
“A weakness in an AI platform can quickly turn a helpful tool into a pathway for abuse.”
Google addressed CVE-2026-0628 affecting the Gemini platform. The vulnerability impacts how the system processes certain interactions and inputs within the service. If exploited, an attacker could manipulate application behavior and perform unintended actions within the platform environment. Because AI services like Gemini often integrate with multiple systems and process user-generated content, weaknesses in input handling can increase the risk of misuse or unauthorized activity.
CVE-2026-0628 has a CVSS score of 8.8, which is High severity. No exploitation has been verified. The security update strengthens protections around the affected functionality and reduces the likelihood that crafted inputs could manipulate the platform’s behavior.
Key Details
- Affected Product
- Google Chrome
- Attack Vector
- Network
- Attack Complexity
- Low
- Privileges Required
- None
- User Interaction
- Required
- CWE Classification
- CWE-862