Lucene search
K

371342 matches found

CVE
CVE
added 2026/07/01 10:21 p.m.25 views

CVE-2026-14384

CVE-2026-14384 describes an out-of-bounds read in ANGLE used by Google Chrome on Windows , affecting versions prior to 150.0.7871.46 . The underlying issue in ANGLE allows a remote attacker to leak cross-origin data via a crafted HTML page . Affected component: ANGLE within Chromium-based Chrome;...

6.5CVSS5.8AI score0.00263EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.22 views

CVE-2026-14422

CVE-2026-14422 : Out-of-bounds read/write in Tint component of Google Chrome before version 150.0.7871.46. The issue allowed a remote attacker to potentially trigger memory access errors via a crafted HTML page. The severity is listed as High. Affected product: Google Chrome (Tint within Chromium...

8.8CVSS5.8AI score0.00271EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.21 views

CVE-2026-14420

Summary (CVE-2026-14420): Out-of-bounds read/write in Dawn (Chrome’s Dawn integration) in Google Chrome

9.6CVSS5.8AI score0.00253EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.24 views

CVE-2026-14430

CVE-2026-14430 describes an integer overflow in V8 (Chromium/Google Chrome) prior to version 150.0.7871.46 , allowing a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Affected component: V8 engine within Chrome. Impact per documents: remote code execution with...

8.8CVSS6.2AI score0.00291EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.26 views

CVE-2026-14389

The provided sources describe a vulnerability in Google Chrome’s Skia: an integer overflow in Skia, prior to Chrome 150.0.7871.46, could allow a remote attacker who has compromised the renderer process to potentially escape the sandbox via a crafted HTML page. Affected component: Skia inside Chro...

8.3CVSS5.9AI score0.00242EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.21 views

CVE-2026-14387

Summary (CVE-2026-14387) : An integer overflow in Skia used by Google Chrome prior to 150.0.7871.46 could allow a remote attacker to potentially perform a sandbox escape via a crafted HTML page. The description appears consistently across NVD, CVE list, EUVD, and related feeds. The connected sour...

9.6CVSS5.9AI score0.00276EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.32 views

CVE-2026-14391

The CVE-2026-14391 entry concerns an integer overflow in ANGLE used by Google Chrome on Windows, prior to version 150.0.7871.46. The vulnerability allows a remote attacker who has already compromised the renderer process to potentially read sensitive data from process memory via a crafted HTML pa...

5.3CVSS5.9AI score0.00233EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.38 views

CVE-2026-14414

CVE-2026-14414 — Insufficient validation of untrusted input in Skia within Google Chrome prior to 150.0.7871.46 allows a remote attacker who has already compromised the renderer process to exfiltrate potentially sensitive data from process memory via a crafted HTML page. The issue is tied to Skia...

5.3CVSS5.8AI score0.00235EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.21 views

CVE-2026-14429

CVE-2026-14429 affects Google Chrome and its Skia rendering library. Insufficient validation of untrusted input in Skia before Chrome 150.0.7871.46 can allow a remote attacker who has compromised the renderer process to potentially escape the sandbox via a crafted HTML page. Impact is described a...

8.3CVSS5.8AI score0.00228EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.23 views

CVE-2026-14412

The CVE-2026-14412 entry concerns ANGLE in Google Chrome with insufficient validation of untrusted input. Attack vector involves a remote attacker who has already compromised the renderer process and could potentially escape the sandbox through a crafted HTML page. Affected product context is Goo...

8.3CVSS5.8AI score0.00237EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.21 views

CVE-2026-14428

The CVE-2026-14428 entry covers Google Chrome on Android (Dawn) with insufficient validation of untrusted input, allowing a remote attacker who has already compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Affected software is Chrome on Android, spe...

8.3CVSS5.8AI score0.00259EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.35 views

CVE-2026-14411

CVE-2026-14411 describes insufficient validation of untrusted input in ANGLE used by Google Chrome, prior to build 150.0.7871.46. The issue may allow a remote attacker to cause a sandbox escape via a crafted HTML page. Documented impact is a high-severity, likely remote threat affecting ANGLE int...

9.6CVSS5.8AI score0.00253EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.46 views

CVE-2026-14382

CVE-2026-14382 affects Chrome’s ANGLE component. The issue is insufficient validation of untrusted input in ANGLE, enabling a remote sandbox-escape via a crafted HTML page. Product/versions: Google Chrome prior to 150.0.7871.46. Impact: sandbox escape potential with high severity (per Chromium ad...

9.6CVSS5.8AI score0.00276EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.48 views

CVE-2026-14401

CVE-2026-14401 affects Google Chrome on Android through ANGLE, where insufficient validation of untrusted input in ANGLE prior to 150.0.7871.46 enables a renderer-Process-compromised remote attacker to potentially escape the sandbox via a crafted HTML page. The vulnerability is described as high ...

8.3CVSS5.8AI score0.00237EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.17 views

CVE-2026-14415

In Chrome, CVE-2026-14415 concerns an inappropriate implementation in V8 that affects Google Chrome before version 150.0.7871.46. A remote attacker could exploit the issue by persuading a user to perform specific UI gestures, potentially triggering heap corruption through a crafted HTML page. The...

8.8CVSS5.8AI score0.00253EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.22 views

CVE-2026-14381

CVE-2026-14381 affects Google Chrome’s WebAppInstalls UI. A crafted HTML page can trigger UI spoofing due to an incorrect security UI in WebAppInstalls prior to Chrome 150.0.7871.46. Impact: remote attacker could spoof UI. Mitigation: update to Chrome 150.0.7871.46 or later (Chromium-based). Refe...

6.5CVSS5.8AI score0.00211EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.18 views

CVE-2026-14409

CVE-2026-14409 affects the Chrome V8 engine prior to 150.0.7871.46. Affected component: V8 in Google Chrome. Root cause: inappropriate implementation allowing a remote attacker to execute arbitrary code inside a sandbox when a user is tricked into performing specific UI gestures on a crafted HTML...

7.5CVSS6.2AI score0.00265EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.20 views

CVE-2026-14407

CVE-2026-14407: In Google Chrome, an inappropriate implementation in the V8 engine prior to 150.0.7871.46 allows a remote attacker to execute arbitrary code inside the browser sandbox via a crafted HTML page. Affects the V8 implementation in Chrome; details indicate a sandbox escape/vector leadin...

8.8CVSS6.2AI score0.00319EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.24 views

CVE-2026-14383

The CVE-2026-14383 entry concerns Google Chrome’s V8 engine. Affected component: V8 in Chrome prior to version 150.0.7871.46. Description from multiple sources indicates an inappropriate implementation allowed remote attackers to execute arbitrary code inside the browser sandbox via a crafted HTM...

8.8CVSS6.2AI score0.00348EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.39 views

CVE-2026-14410

CVE-2026-14410 affects Google Chrome’s Skia rendering pipeline. The issue arises from an inappropriate implementation in Skia that, if a renderer process is compromised, enables UI spoofing via a crafted HTML page. Impact is limited to remote UI spoofing with no broader exploit chain described; b...

4.3CVSS5.8AI score0.0019EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder