cpe inventory

  1. CVE-2026-14156 StorageAccessAPI Chrome Fix: CPE Coverage and Patch Guidance

    CVE-2026-14156 is a Google Chrome StorageAccessAPI policy-enforcement flaw disclosed on June 30, 2026, affecting Chrome versions before 150.0.7871.47 and allowing a remote attacker with an already-compromised renderer process to bypass same-origin policy using a crafted HTML page. The short...
  2. CVE-2026-13774: Chrome Critical Use-After-Free via Malicious Extensions

    Google Chrome CVE-2026-13774, published by NVD on June 30, 2026 and modified on July 2, affects Chrome before version 150.0.7871.47 on Windows, macOS, and Linux through a critical use-after-free flaw in the browser’s Extensions component. The short answer to the CPE question is that the Chrome...