V8 Memory Corruption Vulnerability in Google Chrome
CVE-2026-14394

8.8HIGH

Key Information:

Vendor

Google

Status
Vendor
CVE Published:
1 July 2026

What is CVE-2026-14394?

A use after free vulnerability exists in the V8 engine of Google Chrome, allowing attackers to execute arbitrary code through a crafted HTML page. This flaw can potentially lead to heap corruption, enabling remote exploitation of the affected product. Users are advised to update their browsers to the latest version to mitigate risks associated with this vulnerability.

Affected Version(s)

Chrome 150.0.7871.46

References

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.