CVE-2026-14031
- EPSS 0.17%
- Veröffentlicht 30.06.2026 23:17:15
- Zuletzt bearbeitet 01.07.2026 20:01:32
Inappropriate implementation in File Input in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14032
- EPSS 0.26%
- Veröffentlicht 30.06.2026 23:17:15
- Zuletzt bearbeitet 06.07.2026 18:28:29
Use after free in Bluetooth in Google Chrome on Mac prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. (Chromium security severity: Low)
CVE-2026-14033
- EPSS 0.19%
- Veröffentlicht 30.06.2026 23:17:15
- Zuletzt bearbeitet 01.07.2026 15:45:49
Insufficient policy enforcement in Media in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker to bypass site isolation via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-14011
- EPSS 0.17%
- Veröffentlicht 30.06.2026 23:17:14
- Zuletzt bearbeitet 01.07.2026 19:39:29
Out of bounds read in SurfaceCapture in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-14012
- EPSS 0.21%
- Veröffentlicht 30.06.2026 23:17:14
- Zuletzt bearbeitet 01.07.2026 15:46:48
Side-channel information leakage in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-14013
- EPSS 0.17%
- Veröffentlicht 30.06.2026 23:17:14
- Zuletzt bearbeitet 01.07.2026 19:39:20
Inappropriate implementation in SVG in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-14014
- EPSS 0.17%
- Veröffentlicht 30.06.2026 23:17:14
- Zuletzt bearbeitet 01.07.2026 19:39:14
Inappropriate implementation in Paint in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-14015
- EPSS 0.17%
- Veröffentlicht 30.06.2026 23:17:14
- Zuletzt bearbeitet 01.07.2026 19:39:06
Race in WebRTC in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-14016
- EPSS 0.17%
- Veröffentlicht 30.06.2026 23:17:14
- Zuletzt bearbeitet 01.07.2026 19:39:00
Inappropriate implementation in SVG in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-14017
- EPSS 0.17%
- Veröffentlicht 30.06.2026 23:17:14
- Zuletzt bearbeitet 01.07.2026 19:38:53
Inappropriate implementation in Navigation in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium...