Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
20440
Total
1466
Critical
6204
High
6496
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-14111 | HIGH | 8.1 | Use after free in WebProtect in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extension to execute … | Jun 30, 2026 |
| CVE-2026-14110 | MEDIUM | 4.3 | Inappropriate implementation in DarkMode in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security … | Jun 30, 2026 |
| CVE-2026-14109 | CRITICAL | 9.6 | Insufficient policy enforcement in Mojo in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a … | Jun 30, 2026 |
| CVE-2026-14108 | HIGH | 8.8 | Use after free in PDFium in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted … | Jun 30, 2026 |
| CVE-2026-14107 | HIGH | 8.8 | Use after free in Scheduling in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted … | Jun 30, 2026 |
| CVE-2026-14106 | CRITICAL | 9.6 | Insufficient validation of untrusted input in Text in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process … | Jun 30, 2026 |
| CVE-2026-14105 | CRITICAL | 9.6 | Insufficient policy enforcement in Speech in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same origin policy via a crafted HTML page. … | Jun 30, 2026 |
| CVE-2026-14104 | HIGH | 8.8 | Insufficient validation of untrusted input in WebAppInstalls in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via … | Jun 30, 2026 |
| CVE-2026-14103 | MEDIUM | 6.5 | Use after free in SSL in Google Chrome on ChromeOS prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory … | Jun 30, 2026 |
| CVE-2026-14102 | HIGH | 8.8 | Use after free in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. … | Jun 30, 2026 |
| CVE-2026-14101 | CRITICAL | 9.6 | Insufficient policy enforcement in Sandbox in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially … | Jun 30, 2026 |
| CVE-2026-14100 | MEDIUM | 6.5 | Insufficient data validation in NetworkCache in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium … | Jun 30, 2026 |
| CVE-2026-14099 | HIGH | 8.8 | Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage … | Jun 30, 2026 |
| CVE-2026-14098 | MEDIUM | 6.5 | Inappropriate implementation in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security … | Jun 30, 2026 |
| CVE-2026-14097 | CRITICAL | 9.6 | Inappropriate implementation in WebAppInstalls in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform … | Jun 30, 2026 |
| CVE-2026-14096 | MEDIUM | 6.5 | Inappropriate implementation in Input in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to leak cross-origin … | Jun 30, 2026 |
| CVE-2026-14095 | CRITICAL | 9.6 | Insufficient policy enforcement in Browser in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a … | Jun 30, 2026 |
| CVE-2026-14094 | HIGH | 7.8 | Use after free in Installer in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to perform OS-level privilege escalation via a malicious … | Jun 30, 2026 |
| CVE-2026-14093 | CRITICAL | 9.6 | Use after free in Cast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a … | Jun 30, 2026 |
| CVE-2026-14092 | MEDIUM | 4.3 | Insufficient policy enforcement in Privacy in Google Chrome prior to 150.0.7871.47 allowed an attacker in a privileged network position to leak cross-origin data via malicious … | Jun 30, 2026 |
| CVE-2026-14091 | HIGH | 8.8 | Use after free in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted … | Jun 30, 2026 |
| CVE-2026-14090 | CRITICAL | 9.8 | Insufficient validation of untrusted input in CameraCapture in Google Chrome on ChromeOS prior to 150.0.7871.47 allowed a remote attacker to perform an out of bounds … | Jun 30, 2026 |
| CVE-2026-14089 | MEDIUM | 4.3 | Insufficient validation of untrusted input in PopupBlocker in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to perform … | Jun 30, 2026 |
| CVE-2026-14088 | MEDIUM | 6.5 | Uninitialized Use in Canvas in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via … | Jun 30, 2026 |
| CVE-2026-14087 | HIGH | 8.8 | Heap buffer overflow in WebNN in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially … | Jun 30, 2026 |