8.8
/ 10
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Description
Use after free in BrowserTag in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: Low)
AI Analysis
Use after free in BrowserTag in Google Chrome
Basic Information
ID
CVE-2026-14040
Source
Chrome
Published
Jun 30, 2026 at 22:39
Modified
Jul 1, 2026 at 13:23
Affected Product
Vendor
Google
Product
Chrome
Version
150.0.7871.47
Affected Versions
Google Chrome 150.0.7871.47
CWE Classification
AI Assessment
AI Score
8.8 / 10
AI Severity
High
Vendor
Google
Product
Google Chrome
Version
150.0.7871.47