CVE-2026-14044
- EPSS 0.22%
- Veröffentlicht 30.06.2026 23:17:16
- Zuletzt bearbeitet 02.07.2026 14:34:07
Use after free in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14045
- EPSS 0.18%
- Veröffentlicht 30.06.2026 23:17:16
- Zuletzt bearbeitet 02.07.2026 14:33:55
Insufficient validation of untrusted input in Network in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14022
- EPSS 0.21%
- Veröffentlicht 30.06.2026 23:17:15
- Zuletzt bearbeitet 01.07.2026 19:37:31
Insufficient validation of untrusted input in Network in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-14023
- EPSS 0.22%
- Veröffentlicht 30.06.2026 23:17:15
- Zuletzt bearbeitet 01.07.2026 19:37:26
Insufficient validation of untrusted input in SanitizerAPI in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-14024
- EPSS 0.21%
- Veröffentlicht 30.06.2026 23:17:15
- Zuletzt bearbeitet 01.07.2026 19:41:59
Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Med...
CVE-2026-14025
- EPSS 0.21%
- Veröffentlicht 30.06.2026 23:17:15
- Zuletzt bearbeitet 01.07.2026 19:41:42
Use after free in Views in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14026
- EPSS 0.15%
- Veröffentlicht 30.06.2026 23:17:15
- Zuletzt bearbeitet 01.07.2026 15:46:31
Incorrect security UI in SplitView in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14027
- EPSS 0.17%
- Veröffentlicht 30.06.2026 23:17:15
- Zuletzt bearbeitet 01.07.2026 19:41:33
Use after free in SignIn in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14028
- EPSS 0.16%
- Veröffentlicht 30.06.2026 23:17:15
- Zuletzt bearbeitet 02.07.2026 19:31:07
Incorrect security UI in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14030
- EPSS 0.15%
- Veröffentlicht 30.06.2026 23:17:15
- Zuletzt bearbeitet 01.07.2026 15:46:10
Inappropriate implementation in SplitView in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chrom...