Security Vulnerability in Google Chrome Affecting Windows Users
CVE-2026-14402

6.5MEDIUM

Key Information:

Vendor

Google

Status
Vendor
CVE Published:
1 July 2026

What is CVE-2026-14402?

The vulnerability in Google Chrome involves uninitialized use in ANGLE, which can potentially expose sensitive information from process memory. An attacker can craft a malicious HTML page that, when opened in an affected version of Chrome on Windows, may allow them to access this data. Users are encouraged to update to the latest version of Chrome to mitigate the risk associated with this vulnerability.

Affected Version(s)

Chrome 150.0.7871.46

References

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.