CVE-2026-14119
Last modified
CVE-2026-14119 is a medium-severity vulnerability rated 6.5/10 on the CVSS scale. Type Confusion in Bluetooth in Google Chrome on Windows prior to 150.0.7871.47 allowed an attacker on the local network segment to obtain potentially sensitive information from process memory via a malicious peripheral. (Chromium security severity: Low). EPSS estimates a 0.11% chance of exploitation in the next 30 days.
Description
Type Confusion in Bluetooth in Google Chrome on Windows prior to 150.0.7871.47 allowed an attacker on the local network segment to obtain potentially sensitive information from process memory via a malicious peripheral. (Chromium security severity: Low)
Metrics
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Chrome | < 150.0.7871.47 |
References
- https://issues.chromium.org/issues/513775483Permissions Required
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2026-14119?
How severe is CVE-2026-14119?
How do I fix CVE-2026-14119?
Related CVEs from 2026
- CVE-2026-14113Use after free in Updater in Google Chrome on Windows prior …9.6
- CVE-2026-14114Inappropriate implementation in WebAppInstalls in Google Chr…7.5
- CVE-2026-14115Insufficient validation of untrusted input in Cast in Google…7.5
- CVE-2026-14116Insufficient validation of untrusted input in DevTools in Go…4.3
- CVE-2026-14117Insufficient validation of untrusted input in DevTools in Go…5.3
- CVE-2026-14118Insufficient data validation in DevTools in Google Chrome pr…6.5
- CVE-2026-1412A vulnerability has been found in Sangfor Operation and Main…9.8
- CVE-2026-14120Inappropriate implementation in DevTools in Google Chrome pr…9.6
- CVE-2026-14121Use after free in Chromoting in Google Chrome on Linux prior…9.8
- CVE-2026-14122Insufficient validation of untrusted input in WebAppInstalls…8.1
- CVE-2026-14123Incorrect security UI in Chrome for iOS in Google Chrome on …4.3
- CVE-2026-14124Inappropriate implementation in CredentialProvider in Google…7.8
Are you affected by CVE-2026-14119?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST
