Use After Free Vulnerability in Google Chrome Affects Multiple Versions
CVE-2026-14426

7.5HIGH

Key Information:

Vendor

Google

Status
Vendor
CVE Published:
1 July 2026

What is CVE-2026-14426?

A use after free vulnerability exists in the V8 engine of Google Chrome, which affects versions prior to 150.0.7871.46. This flaw enables a remote attacker to execute arbitrary code within a sandbox environment by persuading a user to perform specific UI gestures on a specially crafted HTML page. This kind of attack could allow for potentially severe exploitation if successfully executed, making it crucial for users to update their Google Chrome to the latest version to mitigate risks.

Affected Version(s)

Chrome 150.0.7871.46

References

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.