CVE-2026-14083
- EPSS 0.18%
- Veröffentlicht 30.06.2026 23:17:20
- Zuletzt bearbeitet 01.07.2026 19:36:48
Insufficient validation of untrusted input in HTML in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14084
- EPSS 0.16%
- Veröffentlicht 30.06.2026 23:17:20
- Zuletzt bearbeitet 01.07.2026 19:36:40
Insufficient validation of untrusted input in Chromoting in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially exploit heap corruption via malicious network traffic. (Chromium security severity: Low)
CVE-2026-14085
- EPSS 0.17%
- Veröffentlicht 30.06.2026 23:17:20
- Zuletzt bearbeitet 01.07.2026 19:36:32
Side-channel information leakage in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14086
- EPSS 0.22%
- Veröffentlicht 30.06.2026 23:17:20
- Zuletzt bearbeitet 02.07.2026 05:16:38
Insufficient policy enforcement in HID in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14087
- EPSS 0.25%
- Veröffentlicht 30.06.2026 23:17:20
- Zuletzt bearbeitet 02.07.2026 14:15:15
Heap buffer overflow in WebNN in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14088
- EPSS 0.24%
- Veröffentlicht 30.06.2026 23:17:20
- Zuletzt bearbeitet 02.07.2026 13:33:57
Uninitialized Use in Canvas in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14089
- EPSS 0.17%
- Veröffentlicht 30.06.2026 23:17:20
- Zuletzt bearbeitet 02.07.2026 14:13:18
Insufficient validation of untrusted input in PopupBlocker in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14068
- EPSS 0.18%
- Veröffentlicht 30.06.2026 23:17:19
- Zuletzt bearbeitet 01.07.2026 16:28:40
Inappropriate implementation in Omnibox in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium secu...
CVE-2026-14069
- EPSS 0.22%
- Veröffentlicht 30.06.2026 23:17:19
- Zuletzt bearbeitet 01.07.2026 16:28:15
Integer overflow in WebNN in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14070
- EPSS 0.24%
- Veröffentlicht 30.06.2026 23:17:19
- Zuletzt bearbeitet 01.07.2026 16:27:53
Integer overflow in WebNN in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Low)