CVE Catalog

CVE-2026-14385

HighCVSS 8.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.33%

25th percentile — higher than 25% of all known CVEs

Summary

A heap buffer overflow in ANGLE in Google Chrome on Mac prior to 150.0.7871.46 allows a remote attacker to perform out-of-bounds memory access via a crafted HTML page.

Risk Assessment

An attacker could remotely execute code or crash the browser, compromising user data confidentiality and availability.

Recommendation

Immediately update Google Chrome to version 150.0.7871.46 or later on all Mac systems.

Original NVD description (English source)

Heap buffer overflow in ANGLE in Google Chrome on Mac prior to 150.0.7871.46 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

Vulnerability data from NVD (NIST) · CISA KEV · EPSS