CVE-2026-14095
- EPSS 0.17%
- Veröffentlicht 30.06.2026 23:17:21
- Zuletzt bearbeitet 01.07.2026 19:16:48
Insufficient policy enforcement in Browser in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14096
- EPSS 0.17%
- Veröffentlicht 30.06.2026 23:17:21
- Zuletzt bearbeitet 01.07.2026 18:29:11
Inappropriate implementation in Input in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14097
- EPSS 0.17%
- Veröffentlicht 30.06.2026 23:17:21
- Zuletzt bearbeitet 01.07.2026 18:28:37
Inappropriate implementation in WebAppInstalls in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security sever...
CVE-2026-14098
- EPSS 0.17%
- Veröffentlicht 30.06.2026 23:17:21
- Zuletzt bearbeitet 01.07.2026 18:28:09
Inappropriate implementation in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14099
- EPSS 0.18%
- Veröffentlicht 30.06.2026 23:17:21
- Zuletzt bearbeitet 01.07.2026 19:16:48
Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severi...
CVE-2026-14100
- EPSS 0.17%
- Veröffentlicht 30.06.2026 23:17:21
- Zuletzt bearbeitet 01.07.2026 18:26:59
Insufficient data validation in NetworkCache in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14079
- EPSS 0.19%
- Veröffentlicht 30.06.2026 23:17:20
- Zuletzt bearbeitet 01.07.2026 19:37:13
Insufficient policy enforcement in Network in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14080
- EPSS 0.18%
- Veröffentlicht 30.06.2026 23:17:20
- Zuletzt bearbeitet 06.07.2026 15:30:29
Insufficient validation of untrusted input in TabSwitcher in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to bypass navigation restrictions via malicious network traffic. (Chromium security severity: Low)
CVE-2026-14081
- EPSS 0.17%
- Veröffentlicht 30.06.2026 23:17:20
- Zuletzt bearbeitet 01.07.2026 19:37:02
Insufficient policy enforcement in DevTools in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from process memory via a crafted Chrome Extensi...
CVE-2026-14082
- EPSS 0.15%
- Veröffentlicht 30.06.2026 23:17:20
- Zuletzt bearbeitet 01.07.2026 19:36:55
Race in Storage in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)