CVE-2026-14119
- EPSS 0.11%
- Veröffentlicht 30.06.2026 23:17:23
- Zuletzt bearbeitet 01.07.2026 16:56:16
Type Confusion in Bluetooth in Google Chrome on Windows prior to 150.0.7871.47 allowed an attacker on the local network segment to obtain potentially sensitive information from process memory via a malicious peripheral. (Chromium security severity: L...
CVE-2026-14120
- EPSS 0.24%
- Veröffentlicht 30.06.2026 23:17:23
- Zuletzt bearbeitet 02.07.2026 13:59:20
Inappropriate implementation in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14121
- EPSS 0.29%
- Veröffentlicht 30.06.2026 23:17:23
- Zuletzt bearbeitet 02.07.2026 15:16:58
Use after free in Chromoting in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via malicious network traffic. (Chromium security severity: Low)
CVE-2026-14122
- EPSS 0.18%
- Veröffentlicht 30.06.2026 23:17:23
- Zuletzt bearbeitet 01.07.2026 20:02:07
Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14101
- EPSS 0.22%
- Veröffentlicht 30.06.2026 23:17:22
- Zuletzt bearbeitet 02.07.2026 13:55:08
Insufficient policy enforcement in Sandbox in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity:...
CVE-2026-14102
- EPSS 0.22%
- Veröffentlicht 30.06.2026 23:17:22
- Zuletzt bearbeitet 02.07.2026 14:12:55
Use after free in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14103
- EPSS 0.22%
- Veröffentlicht 30.06.2026 23:17:22
- Zuletzt bearbeitet 02.07.2026 18:12:17
Use after free in SSL in Google Chrome on ChromeOS prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14104
- EPSS 0.34%
- Veröffentlicht 30.06.2026 23:17:22
- Zuletzt bearbeitet 02.07.2026 14:15:40
Insufficient validation of untrusted input in WebAppInstalls in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14105
- EPSS 0.15%
- Veröffentlicht 30.06.2026 23:17:22
- Zuletzt bearbeitet 02.07.2026 14:02:00
Insufficient policy enforcement in Speech in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14106
- EPSS 0.22%
- Veröffentlicht 30.06.2026 23:17:22
- Zuletzt bearbeitet 02.07.2026 14:14:40
Insufficient validation of untrusted input in Text in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium securi...