Cve 2026 14028
The latest Cve 2026 14028 coverage — news, analysis, and updates from the WindowsNews.AI desk.
Chrome 150.0.7871.46 patches high-severity out-of-bounds read bug – update now
Google has released Chrome 150.0.7871.46 to address CVE-2026-14386, a high-severity out-of-bounds read in the ANGLE graphics engine. The flaw could be exploited by a remote attacker via a malicious webpage to read sensitive memory or execute code. Users and IT admins should apply the update immediately by restarting Chrome.
Chrome for iOS Update 150.0.7871.47 Fixes UI Spoofing Bug — How to Update Now
Google released an emergency update for Chrome on iOS, version 150.0.7871.47, fixing a UI spoofing vulnerability (CVE-2026-14137) that could trick users into entering sensitive data. While Windows versions are unaffected, iPhone and iPad users should update immediately to avoid phishing risks.
Chrome for iOS Patch Closes Dangerous Security Hole — Update to Version 150.0.7871.47 Immediately
Google has released an emergency update for Chrome on iOS, version 150.0.7871.47, to patch a high-severity vulnerability tracked as CVE-2026-14136. The flaw does not affect Windows, macOS, or Android, but all iPhone and iPad users should update immediately to protect against potential remote code execution via malicious web pages.
Chrome 150 Fixes Critical Sandbox Escape That Could Let Attackers Hijack Windows PCs
Google released Chrome version 150.0.7871.46 to patch CVE-2026-14382, a critical sandbox escape vulnerability affecting earlier versions. No active exploitation has been reported, but the flaw could enable attackers to break out of Chrome's sandbox and compromise Windows systems when combined with other bugs. Users should update immediately and restart the browser.
Google Fixes Chrome for iOS Flaw That Lets Attackers Spoof the Address Bar — Update to 150.0.7871.47 Now
Google has issued an urgent security update for Chrome on iOS, version 150.0.7871.47, to fix a high-severity vulnerability (CVE-2026-14128) that allows attackers to spoof the address bar. The flaw can trick iPhone and iPad users into thinking they are on a legitimate website, putting sensitive data at risk. Users should update immediately through the App Store, and IT admins must push the patch to managed devices without delay.
iOS Chrome Users Must Patch Address Bar Spoofing Flaw Immediately
Google's latest Chrome for iOS update fixes a critical omnibox spoofing vulnerability (CVE-2026-14123) that lets attackers fake the address bar. All iPhone and iPad users running Chrome should update to version 150.0.7871.47 or later immediately to prevent phishing attacks.
Chrome 150.0.7871.47 for Android Lands to Block Actively Exploited Security Flaw — Update Now
Google has released Chrome 150.0.7871.47 for Android to fix a high-severity vulnerability (CVE-2026-14126) that is already being exploited in the wild. The emergency update requires immediate manual installation for many users, and IT administrators must enforce the new version across managed devices. This article explains what changed, who is affected, and how to apply the patch step by step.
Emergency Chrome for Android Patch Seals CVE-2026-14114 Security Hole — Windows and Mac Versions Safe
Google has urgently patched a security vulnerability (CVE-2026-14114) in Chrome for Android with version 150.0.7871.47. Desktop users are not affected by this platform-specific flaw. Android users should immediately update via the Google Play Store and enable automatic updates to stay protected.
Google Ships Urgent Patch for Chrome on iPhone, Closing Critical Security Hole
Google released Chrome for iOS version 150.0.7871.47 on June 30, 2026, to patch CVE-2026-14099, a critical use-after-free vulnerability that could let a remote attacker compromise an iPhone or iPad after minimal user interaction. All iOS users should update immediately to protect synced data and device integrity. Windows users who sync Chrome across devices should also verify their desktops are up to date and consider security hygiene steps.
Chrome for Android Patch Fixes Cross-Origin Data Leak (CVE-2026-14096)
Google has released Chrome 150 for Android to fix CVE-2026-14096, an information-disclosure bug that could allow an attacker with a compromised renderer process to leak cross-origin data. All users should update immediately through the Play Store, and enterprise admins should enforce the update to protect corporate data.
Chrome for iOS 150.0.7871.47 Fixes Critical Policy Bypass Exploitable via Malicious HTML
Google has patched a critical policy-enforcement bypass in Chrome for iOS with version 150.0.7871.47. The flaw, CVE-2026-14075, could let a remote attacker use malicious HTML to bypass security restrictions and access sensitive data. All users should update immediately via the App Store.
Chrome for iOS Gets Emergency Patch for Use-After-Free Flaw as Severity Ratings Clash
Google has released an emergency update for Chrome on iOS to patch a use-after-free vulnerability tracked as CVE-2026-14067. The update, version 150.0.7871.47, addresses a flaw in WebTransport that carries a low severity rating from Google but a high 8.8 CVSS score from CISA. The article explains the discrepancy, provides practical steps for users and admins to update, and explores the broader implications for mobile browser security.
iPhone and iPad Users Must Update Chrome Now to Patch New Security Hole
Google has released Chrome 150.0.7871.47 for iOS to fix CVE-2026-14066, a security vulnerability. The update is critical for iPhone and iPad users; Windows desktop Chrome is not affected. Users should update immediately via the App Store.