Lucene search
K

369697 matches found

CVE
CVE
added 2026/07/01 10:35 p.m.19 views

CVE-2026-14440

Summary: CVE-2026-14440 concerns Cloudflare’s Universal SSL: automatic, permissive CAA RRset management on Universal SSL zones supersedes customer CAA records. When customers push stricter CAA via RFC 8657 accounturi or validationmethods, CAs do not observe those parameters during RFC 8659 evalua...

7.6CVSS5.7AI score0.00135EPSS
Exploits0References8
CVE
CVE
added 2026/07/01 10:22 p.m.23 views

CVE-2026-14426

CVE-2026-14426 is a Use After Free in V8 within Google Chrome before 150.0.7871.46. A remote attacker could lure a user into specific UI gestures to run arbitrary code in Chrome’s sandbox via a crafted HTML page. Severity: High. Affected: V8 in Chrome (pre-150.7871.46). Mitigation: Chrome update ...

7.5CVSS6.2AI score0.00216EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:22 p.m.23 views

CVE-2026-14432

The CVE-2026-14432 entry documents a use-after-free in V8 affecting Google Chrome’s JavaScript engine prior to version 150.0.7871.46 . This vulnerability could allow a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page, as described in multiple sources. Affected co...

8.8CVSS6.2AI score0.00247EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:22 p.m.19 views

CVE-2026-14394

Summary of CVE-2026-14394 (Google Chrome / V8) : A use-after-free in V8 leads to potential heap corruption when processing crafted HTML pages. Affected software is Google Chrome, with vulnerable versions prior to 150.0.7871.46. The issue is caused by a use-after-free in the JavaScript engine (V8)...

8.8CVSS5.8AI score0.00235EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:22 p.m.19 views

CVE-2026-14403

CVE-2026-14403: Use-after-free in V8 (Chrome) allows remote code execution inside a sandbox via a crafted HTML page on Chrome versions prior to 150.0.7871.46. Severity is listed as Low; the vulnerability stems from a V8 use-after-free condition. Documents do not specify exploitation status or con...

8.8CVSS6.2AI score0.00257EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:22 p.m.16 views

CVE-2026-14393

CVE-2026-14393: Use-after-free in V8 (Chrome) allows remote code execution inside the sandbox via a crafted HTML page. Affected: Google Chrome's V8 engine prior to version 150.0.7871.46. Impact: arbitrary code execution with high/total impact as per the CVSS vector. Remediation: update to Chrome ...

8.8CVSS6.2AI score0.00281EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:22 p.m.19 views

CVE-2026-14419

CVE-2026-14419 affects Google Chrome where a use-after-free in Skia could allow a remote attacker to escape the sandbox via a crafted HTML page. It targets Skia in Chrome before version 150.0.7871.46. The issue is listed as Critical (CVSS: 9.6, Network) with potential for total impact to confiden...

9.6CVSS5.8AI score0.00215EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:22 p.m.21 views

CVE-2026-14417

CVE-2026-14417 affects Dawn in Google Chrome prior to 150.0.7871.46. The issue is a use-after-free in Dawn, enabling a remote attacker to potentially escape the Chrome sandbox via a crafted HTML page. The known remediation is upgrading to Chrome 150.0.7871.46 or later, as reflected in the referen...

9.6CVSS5.8AI score0.00206EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:22 p.m.19 views

CVE-2026-14424

CVE-2026-14424 affects Dawn in Google Chrome on macOS prior to 150.0.7871.46. A use-after-free vulnerability in Dawn could allow a remote attacker to potentially escape the sandbox via a crafted HTML page, with Chromium severity listed as High. The available documents consistently describe the tr...

9.6CVSS5.8AI score0.00215EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:22 p.m.17 views

CVE-2026-14425

This CVE affects ANGLE in Google Chrome and is caused by a use-after-free in ANGLE that could allow a remote attacker to perform a sandbox escape via a crafted HTML page in Chrome versions prior to 150.0.7871.46. Impact is described as high/critical with potential full compromise of confidentiali...

9.6CVSS5.8AI score0.00218EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:22 p.m.16 views

CVE-2026-14390

CVE-2026-14390 describes a use-after-free in ANGLE used by Google Chrome before version 150.0.7871.46. The vulnerability could allow a remote attacker to attempt a sandbox escape via a crafted HTML page. The description and connected sources consistently identify ANGLE as the affected Graphics/AN...

9.6CVSS5.8AI score0.00235EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:22 p.m.21 views

CVE-2026-14398

In Connected sources, CVE-2026-14398 is described as a Use-after-free in ANGLE affecting Google Chrome prior to 150.0.7871.46, enabling a remote attacker to potentially escape the sandbox via a crafted HTML page. The vulnerability is confirmed as part of ANGLE in Chrome, with a critical severity....

9.6CVSS5.8AI score0.00215EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:22 p.m.24 views

CVE-2026-14405

CVE-2026-14405 describes an uninitialized use in the V8 engine of Google Chrome, prior to version 150.0.7871.46, which could allow a remote attacker to execute arbitrary code inside the browser sandbox via a crafted HTML page. The vulnerability affects the V8 component within Chrome and is associ...

9.6CVSS6.2AI score0.00307EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:22 p.m.16 views

CVE-2026-14408

CVE-2026-14408 affects Google Chrome Dawn prior to 150.0.7871.46, with an uninitialized use in Dawn allowing a remote attacker to read potentially sensitive information from process memory via a crafted HTML page. The vulnerability’s impact is described as information disclosure (Medium severity)...

6.5CVSS5.8AI score0.00224EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:22 p.m.19 views

CVE-2026-14399

CVE-2026-14399 affects Google Chrome (Dawn) prior to 150.0.7871.46. The issue is an uninitialized-use defect in Dawn that lets a remote attacker extract potentially sensitive data from a process’s memory via a crafted HTML page. The available documents do not specify exact vulnerable products bey...

6.5CVSS5.8AI score0.00224EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.20 views

CVE-2026-14421

CVE-2026-14421 concerns an uninitialized-use issue in Dawn for Google Chrome on ChromeOS, prior to version 150.0.7871.46. The issue could allow a remote attacker to read potentially sensitive data from process memory via a crafted HTML page. Documents consistently describe the vulnerability as Un...

6.5CVSS5.8AI score0.00215EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.25 views

CVE-2026-14413

Uninitialized use in ANGLE within Google Chrome up to version 150.0.7871.46 allows a renderer-compromised attacker to potentially escape the sandbox via a crafted HTML page. CVE-2026-14413 (Severity High) indicates a sandbox-escape risk; remediations require updating to 150.0.7871.46 or later. No...

8.3CVSS5.8AI score0.00202EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.47 views

CVE-2026-14418

Technical details about CVE-2026-14418 are not publicly available in the provided documents. Monitor for updates from official advisories for affected products, impact, and fixes.

4.3CVSS5.8AI score0.00185EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.17 views

CVE-2026-14402

CVE-2026-14402 describes an uninitialized use in ANGLE within Google Chrome on Windows, prior to version 150.0.7871.46. The issue allows a remote attacker to potentially read sensitive data from a process's memory via a crafted HTML page. Affected component is ANGLE in Chrome’s Windows build; und...

6.5CVSS5.8AI score0.00224EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.19 views

CVE-2026-14431

CVE-2026-14431 describes a type confusion in the V8 JavaScript engine used by Google Chrome prior to version 150.0.7871.46 . The issue allows a remote attacker to execute arbitrary code inside Chrome’s sandbox via a crafted HTML page. Affected component: V8 within Chromium/Chrome. Root cause: typ...

8.8CVSS6.2AI score0.00275EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder