368855 matches found
CVE-2026-14416
CVE-2026-14416 affects Dawn in Google Chrome (Chromium-based) with an out-of-bounds read that could allow a remote attacker to potentially escape the sandbox via a crafted HTML page. The description specifies the vulnerable state as Chrome prior to version 150.0.7871.46. No exploitation status is...
CVE-2026-14406
CVE-2026-14406 affects Google Chrome's V8 engine prior to 150.0.7871.46. Root cause: an out-of-bounds read in V8. Impact: attacker-assisted access to potentially sensitive information from process memory via a crafted Chrome Extension. Remediation: update Chrome to 150.0.7871.46 or later. Exploit...
CVE-2026-14388
The CVE-2026-14388 describes an out-of-bounds read in ANGLE used by Google Chrome, allowing a remote attacker to leak potentially sensitive data from process memory via a crafted HTML page. Affected software: Google Chrome/ANGLE; vulnerable component is ANGLE in the browser. The issue is triggere...
CVE-2026-14386
CVE-2026-14386 describes an Out-of-bounds read in ANGLE used by Google Chrome before version 150.0.7871.46. The issue could allow a remote attacker to obtain potentially sensitive information from a process’s memory via a crafted HTML page. The connected documents confirm Chrome/ANGLE involvement...
CVE-2026-14396
CVE-2026-14396 describes an out-of-bounds read in ANGLE used by Google Chrome, allowing a remote attacker to leak cross-origin data via a crafted HTML page. Affected component: ANGLE within Chrome, with the flaw exploitable through networked HTML content. The issue is tied to Chrome versions prio...
CVE-2026-14422
CVE-2026-14422 : Out-of-bounds read/write in Tint component of Google Chrome before version 150.0.7871.46. The issue allowed a remote attacker to potentially trigger memory access errors via a crafted HTML page. The severity is listed as High. Affected product: Google Chrome (Tint within Chromium...
CVE-2026-14384
CVE-2026-14384 describes an out-of-bounds read in ANGLE used by Google Chrome on Windows , affecting versions prior to 150.0.7871.46 . The underlying issue in ANGLE allows a remote attacker to leak cross-origin data via a crafted HTML page . Affected component: ANGLE within Chromium-based Chrome;...
CVE-2026-14430
CVE-2026-14430 describes an integer overflow in V8 (Chromium/Google Chrome) prior to version 150.0.7871.46 , allowing a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Affected component: V8 engine within Chrome. Impact per documents: remote code execution with...
CVE-2026-14420
Summary (CVE-2026-14420): Out-of-bounds read/write in Dawn (Chrome’s Dawn integration) in Google Chrome
CVE-2026-14389
The provided sources describe a vulnerability in Google Chrome’s Skia: an integer overflow in Skia, prior to Chrome 150.0.7871.46, could allow a remote attacker who has compromised the renderer process to potentially escape the sandbox via a crafted HTML page. Affected component: Skia inside Chro...
CVE-2026-14387
Summary (CVE-2026-14387) : An integer overflow in Skia used by Google Chrome prior to 150.0.7871.46 could allow a remote attacker to potentially perform a sandbox escape via a crafted HTML page. The description appears consistently across NVD, CVE list, EUVD, and related feeds. The connected sour...
CVE-2026-14391
The CVE-2026-14391 entry concerns an integer overflow in ANGLE used by Google Chrome on Windows, prior to version 150.0.7871.46. The vulnerability allows a remote attacker who has already compromised the renderer process to potentially read sensitive data from process memory via a crafted HTML pa...
CVE-2026-14429
CVE-2026-14429 affects Google Chrome and its Skia rendering library. Insufficient validation of untrusted input in Skia before Chrome 150.0.7871.46 can allow a remote attacker who has compromised the renderer process to potentially escape the sandbox via a crafted HTML page. Impact is described a...
CVE-2026-14414
CVE-2026-14414 — Insufficient validation of untrusted input in Skia within Google Chrome prior to 150.0.7871.46 allows a remote attacker who has already compromised the renderer process to exfiltrate potentially sensitive data from process memory via a crafted HTML page. The issue is tied to Skia...
CVE-2026-14428
The CVE-2026-14428 entry covers Google Chrome on Android (Dawn) with insufficient validation of untrusted input, allowing a remote attacker who has already compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Affected software is Chrome on Android, spe...
CVE-2026-14412
The CVE-2026-14412 entry concerns ANGLE in Google Chrome with insufficient validation of untrusted input. Attack vector involves a remote attacker who has already compromised the renderer process and could potentially escape the sandbox through a crafted HTML page. Affected product context is Goo...
CVE-2026-14411
CVE-2026-14411 describes insufficient validation of untrusted input in ANGLE used by Google Chrome, prior to build 150.0.7871.46. The issue may allow a remote attacker to cause a sandbox escape via a crafted HTML page. Documented impact is a high-severity, likely remote threat affecting ANGLE int...
CVE-2026-14382
CVE-2026-14382 affects Chrome’s ANGLE component. The issue is insufficient validation of untrusted input in ANGLE, enabling a remote sandbox-escape via a crafted HTML page. Product/versions: Google Chrome prior to 150.0.7871.46. Impact: sandbox escape potential with high severity (per Chromium ad...
CVE-2026-14401
CVE-2026-14401 affects Google Chrome on Android through ANGLE, where insufficient validation of untrusted input in ANGLE prior to 150.0.7871.46 enables a renderer-Process-compromised remote attacker to potentially escape the sandbox via a crafted HTML page. The vulnerability is described as high ...
CVE-2026-14415
In Chrome, CVE-2026-14415 concerns an inappropriate implementation in V8 that affects Google Chrome before version 150.0.7871.46. A remote attacker could exploit the issue by persuading a user to perform specific UI gestures, potentially triggering heap corruption through a crafted HTML page. The...