CVE Catalog
CVE-2026-14417
CriticalCVSS 9.6Exploitation Probability (EPSS)
Low risk0.21%
11th percentile — higher than 11% of all known CVEs
Summary
A use-after-free vulnerability in Dawn in Google Chrome prior to 150.0.7871.46 allows a remote attacker to potentially perform a sandbox escape via a crafted HTML page.
Risk Assessment
Successful exploitation could allow an attacker to execute code outside the browser sandbox, posing a significant threat to system and organizational data security.
Recommendation
Immediately update Google Chrome to version 150.0.7871.46 or later. Ensure the update is applied to all workstations.
Original NVD description (English source)
Use after free in Dawn in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

