Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
| Source | ID | Title |
|---|---|---|
Debian DLA |
DLA-4672-1 | chromium security update |
Debian DSA |
DSA-6378-1 | chromium security update |
Tue, 07 Jul 2026 16:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Use‑After‑Free in BrowserTag Leading to Heap Corruption via Malicious Chrome Extension |
Mon, 06 Jul 2026 16:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Use‑After‑Free in BrowserTag Leading to Heap Corruption via Malicious Chrome Extension |
Mon, 06 Jul 2026 03:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Use‑After‑Free in Chrome BrowserTag Allows Local Heap Corruption via Malicious Extension |
Sun, 05 Jul 2026 14:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Use‑After‑Free in Chrome BrowserTag Allows Local Heap Corruption via Malicious Extension |
Sat, 04 Jul 2026 23:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Use after free vulnerability in Chrome’s BrowserTag enabling local code execution |
Sat, 04 Jul 2026 15:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Use after free vulnerability in Chrome’s BrowserTag enabling local code execution |
Sat, 04 Jul 2026 07:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Use‑after‑Free in BrowserTag Exploits via Malicious Chrome Extension |
Fri, 03 Jul 2026 20:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Use‑after‑Free in BrowserTag Exploits via Malicious Chrome Extension |
Fri, 03 Jul 2026 09:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Chrome BrowserTag Use‑After‑Free Enables Heap Corruption via Malicious Extension |
Thu, 02 Jul 2026 22:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Chrome BrowserTag Use‑After‑Free Enables Heap Corruption via Malicious Extension |
Thu, 02 Jul 2026 11:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Use‑After‑Free in BrowserTag Enables Heap Corruption via Malicious Chrome Extension |
Thu, 02 Jul 2026 00:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Use‑After‑Free in BrowserTag Enables Heap Corruption via Malicious Chrome Extension |
Wed, 01 Jul 2026 19:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Use-After-Free in BrowserTag Allows Heap Corruption via Malicious Extensions |
Wed, 01 Jul 2026 14:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
cvssV3_1
|
Wed, 01 Jul 2026 12:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Google
Google chrome |
|
| Vendors & Products |
Google
Google chrome |
Wed, 01 Jul 2026 12:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Use-After-Free in BrowserTag Allows Heap Corruption via Malicious Extensions |
Wed, 01 Jul 2026 05:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Use‑After‑Free in BrowserTag Allows Heap Corruption via Malicious Extension in Chrome |
Wed, 01 Jul 2026 02:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Use‑After‑Free in BrowserTag Allows Heap Corruption via Malicious Extension in Chrome |
Tue, 30 Jun 2026 23:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Use after free in BrowserTag in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: Low) | |
| Weaknesses | CWE-416 | |
| References |
|
Status: PUBLISHED
Assigner: Chrome
Published:
Updated: 2026-07-01T19:17:06.106Z
Reserved: 2026-06-29T23:11:29.964Z
Link: CVE-2026-14040
Updated: 2026-07-01T13:23:46.818Z
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-07T15:45:03Z
Debian DLA
Debian DSA