Chrome Skia UAF <150.0.7871.46 Sandbox Escape
CVE-2026-14419 Published on July 1, 2026

Use after free in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

NVD

Weakness Type

What is a Dangling pointer Vulnerability?

Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.

CVE-2026-14419 has been classified to as a Dangling pointer vulnerability or weakness.


Products Associated with CVE-2026-14419

Want to know whenever a new CVE is published for Google Chrome? stack.watch will email you.

 

Affected Versions

Google Chrome: