Inappropriate Implementation Vulnerability in Google Chrome
CVE-2026-14383

8.8HIGH

Key Information:

Vendor

Google

Status
Vendor
CVE Published:
1 July 2026

What is CVE-2026-14383?

A vulnerability in the V8 engine of Google Chrome allows remote attackers to execute arbitrary code within a sandbox environment by crafting a malicious HTML page. This flaw exposes users to potential exploitation through seemingly innocuous web content, allowing attackers to leverage the vulnerability for unauthorized actions. Users are encouraged to update to the latest version to mitigate the risk associated with this threat.

Affected Version(s)

Chrome 150.0.7871.46

References

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.