14 matches found
CVE-2026-14412
Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...
CVE-2026-14397
Out of bounds write in ANGLE in Google Chrome on Mac prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...
EUVD-2026-41199
Use after free in Dawn in Google Chrome on Mac prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...
EUVD-2026-41198
Use after free in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...
EUVD-2026-41197
Use after free in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...
CVE-2026-14408
Summary: CVE-2026-14408 refers to an uninitialized-use vulnerability in Dawn within Google Chrome, fixed in Chrome versions 150.0.7871.46 and later. The issue could allow a remote attacker to extract potentially sensitive information from a process’s memory via a crafted HTML page. Affected softw...
CVE-2026-14413
Uninitialized Use in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...
EUVD-2026-41187
Type Confusion in Tint in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...
CVE-2026-14422
CVE-2026-14422 : Out-of-bounds read and write in Tint components of Google Chrome (Chromium-based) prior to 150.0.7871.46 allows a remote attacker to potentially access memory via a crafted HTML page. The issue affects Chrome versions before the 150.0.7871.46 update. Affected product: Google Chro...
EUVD-2026-41170
Insufficient validation of untrusted input in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...
EUVD-2026-41166
Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...
CVE-2026-14415
CVE-2026-14415 involves an inappropriate implementation in V8 used by Google Chrome prior to 150.0.7871.46. A remote attacker could persuade a user to perform specific UI gestures on a crafted HTML page, potentially causing heap corruption. The issue is labeled with Chromium/Chrome severity Low. ...
CVE-2026-14381
CVE-2026-14381 affects Google Chrome prior to version 150.0.7871.46. The issue is an incorrect security UI in WebAppInstalls that allows a remote attacker to perform UI spoofing via a crafted HTML page. The vulnerability is categorized as medium severity in Chromium. Connected records confirm the...
CVE-2026-14404
In Google Chrome, CVE-2026-14404 stems from an improper implementation in PDFium that allows a remote attacker to achieve UI spoofing through a crafted PDF file. Affected versions are Chrome prior to 150.0.7871.46. The underlying issue is in PDF rendering/UI handling within PDFium, enabling spoof...