Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
9.6
CVE-2026-14152: Google Chrome: Compromised Renderer Process Escalation
CVE-2026-14152
Summary
An attacker who has taken control of the Google Chrome renderer process can potentially break out of the security sandbox and gain more access to your system. This is a low-risk issue, but it's still important to update your Chrome browser to the latest version to prevent potential attacks. If you haven't already, update your Chrome browser to the latest version to stay protected.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions |
|---|---|---|
| chrome |
< 150.0.7871.47 cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* |
Original title
Out of bounds read and write in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafte...
Original description
Out of bounds read and write in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Low)
nvd CVSS3.1
9.6
Vulnerability type
CWE-787
Out-of-bounds Write
- https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_... Release Notes
- https://issues.chromium.org/issues/517534944 Permissions Required
Published: 30 Jun 2026 · Updated: 1 Jul 2026 · First seen: 1 Jul 2026