Use After Free Vulnerability in V8 Engine for Google Chrome
CVE-2026-14432

8.8HIGH

Key Information:

Vendor

Google

Status
Vendor
CVE Published:
1 July 2026

What is CVE-2026-14432?

A use after free vulnerability exists in the V8 engine of Google Chrome, affecting versions prior to 150.0.7871.46. This flaw can be exploited by a remote attacker to execute arbitrary code within a sandboxed environment through a specially crafted HTML page. Such vulnerabilities pose significant security risks as they can be used to bypass sandbox protections and gain unauthorized access to system resources.

Affected Version(s)

Chrome 150.0.7871.46

References

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.