369697 matches found
CVE-2026-14440
Summary: CVE-2026-14440 concerns Cloudflare’s Universal SSL: automatic, permissive CAA RRset management on Universal SSL zones supersedes customer CAA records. When customers push stricter CAA via RFC 8657 accounturi or validationmethods, CAs do not observe those parameters during RFC 8659 evalua...
CVE-2026-14426
CVE-2026-14426 is a Use After Free in V8 within Google Chrome before 150.0.7871.46. A remote attacker could lure a user into specific UI gestures to run arbitrary code in Chrome’s sandbox via a crafted HTML page. Severity: High. Affected: V8 in Chrome (pre-150.7871.46). Mitigation: Chrome update ...
CVE-2026-14432
The CVE-2026-14432 entry documents a use-after-free in V8 affecting Google Chrome’s JavaScript engine prior to version 150.0.7871.46 . This vulnerability could allow a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page, as described in multiple sources. Affected co...
CVE-2026-14394
Summary of CVE-2026-14394 (Google Chrome / V8) : A use-after-free in V8 leads to potential heap corruption when processing crafted HTML pages. Affected software is Google Chrome, with vulnerable versions prior to 150.0.7871.46. The issue is caused by a use-after-free in the JavaScript engine (V8)...
CVE-2026-14403
CVE-2026-14403: Use-after-free in V8 (Chrome) allows remote code execution inside a sandbox via a crafted HTML page on Chrome versions prior to 150.0.7871.46. Severity is listed as Low; the vulnerability stems from a V8 use-after-free condition. Documents do not specify exploitation status or con...
CVE-2026-14393
CVE-2026-14393: Use-after-free in V8 (Chrome) allows remote code execution inside the sandbox via a crafted HTML page. Affected: Google Chrome's V8 engine prior to version 150.0.7871.46. Impact: arbitrary code execution with high/total impact as per the CVSS vector. Remediation: update to Chrome ...
CVE-2026-14419
CVE-2026-14419 affects Google Chrome where a use-after-free in Skia could allow a remote attacker to escape the sandbox via a crafted HTML page. It targets Skia in Chrome before version 150.0.7871.46. The issue is listed as Critical (CVSS: 9.6, Network) with potential for total impact to confiden...
CVE-2026-14417
CVE-2026-14417 affects Dawn in Google Chrome prior to 150.0.7871.46. The issue is a use-after-free in Dawn, enabling a remote attacker to potentially escape the Chrome sandbox via a crafted HTML page. The known remediation is upgrading to Chrome 150.0.7871.46 or later, as reflected in the referen...
CVE-2026-14424
CVE-2026-14424 affects Dawn in Google Chrome on macOS prior to 150.0.7871.46. A use-after-free vulnerability in Dawn could allow a remote attacker to potentially escape the sandbox via a crafted HTML page, with Chromium severity listed as High. The available documents consistently describe the tr...
CVE-2026-14425
This CVE affects ANGLE in Google Chrome and is caused by a use-after-free in ANGLE that could allow a remote attacker to perform a sandbox escape via a crafted HTML page in Chrome versions prior to 150.0.7871.46. Impact is described as high/critical with potential full compromise of confidentiali...
CVE-2026-14390
CVE-2026-14390 describes a use-after-free in ANGLE used by Google Chrome before version 150.0.7871.46. The vulnerability could allow a remote attacker to attempt a sandbox escape via a crafted HTML page. The description and connected sources consistently identify ANGLE as the affected Graphics/AN...
CVE-2026-14398
In Connected sources, CVE-2026-14398 is described as a Use-after-free in ANGLE affecting Google Chrome prior to 150.0.7871.46, enabling a remote attacker to potentially escape the sandbox via a crafted HTML page. The vulnerability is confirmed as part of ANGLE in Chrome, with a critical severity....
CVE-2026-14405
CVE-2026-14405 describes an uninitialized use in the V8 engine of Google Chrome, prior to version 150.0.7871.46, which could allow a remote attacker to execute arbitrary code inside the browser sandbox via a crafted HTML page. The vulnerability affects the V8 component within Chrome and is associ...
CVE-2026-14408
CVE-2026-14408 affects Google Chrome Dawn prior to 150.0.7871.46, with an uninitialized use in Dawn allowing a remote attacker to read potentially sensitive information from process memory via a crafted HTML page. The vulnerability’s impact is described as information disclosure (Medium severity)...
CVE-2026-14399
CVE-2026-14399 affects Google Chrome (Dawn) prior to 150.0.7871.46. The issue is an uninitialized-use defect in Dawn that lets a remote attacker extract potentially sensitive data from a process’s memory via a crafted HTML page. The available documents do not specify exact vulnerable products bey...
CVE-2026-14421
CVE-2026-14421 concerns an uninitialized-use issue in Dawn for Google Chrome on ChromeOS, prior to version 150.0.7871.46. The issue could allow a remote attacker to read potentially sensitive data from process memory via a crafted HTML page. Documents consistently describe the vulnerability as Un...
CVE-2026-14413
Uninitialized use in ANGLE within Google Chrome up to version 150.0.7871.46 allows a renderer-compromised attacker to potentially escape the sandbox via a crafted HTML page. CVE-2026-14413 (Severity High) indicates a sandbox-escape risk; remediations require updating to 150.0.7871.46 or later. No...
CVE-2026-14418
Technical details about CVE-2026-14418 are not publicly available in the provided documents. Monitor for updates from official advisories for affected products, impact, and fixes.
CVE-2026-14402
CVE-2026-14402 describes an uninitialized use in ANGLE within Google Chrome on Windows, prior to version 150.0.7871.46. The issue allows a remote attacker to potentially read sensitive data from a process's memory via a crafted HTML page. Affected component is ANGLE in Chrome’s Windows build; und...
CVE-2026-14431
CVE-2026-14431 describes a type confusion in the V8 JavaScript engine used by Google Chrome prior to version 150.0.7871.46 . The issue allows a remote attacker to execute arbitrary code inside Chrome’s sandbox via a crafted HTML page. Affected component: V8 within Chromium/Chrome. Root cause: typ...