CVE-2023-5475

Inappropriate implementation in DevTools in Google Chrome prior to 118.0.5993.70 allowed an attacker who convinced a user to install a malicious extension to bypass discretionary access control via a crafted Chrome Extension. Chromium security severity: Medium...

Google Chrome Security Vulnerability

Google Chrome is a web browser from Google, Inc. A security vulnerability exists in Google Chrome that originates from an improper implementation in the DevTools module...

Google Chrome < 118.0.5993.70 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 118.0.5993.70. It is, therefore, affected by multiple vulnerabilities as referenced in the 202310stable-channel-update-for-desktop10 advisory. - Use after free in Blink History in Google Chrome prior to 118.0.5993.70...

Stable Channel Update for Desktop

The Stable channel has been updated to 118.0.5993.70 for Mac and Linux and 118.0.5993.70/.71 for Windows, which will roll out over the coming days/weeks. A full list of changes in this build is available in the log. The Extended Stable channel has been updated to 118.0.5993.71 for Windows and...

Chromecookiestealer - Steal/Inject Chrome Cookies Over The DevTools Protocol

Attaches to Chrome using its Remote DevTools protocol and steals/injects/clears/deletes cookies. Heavily inspired by WhiteChocolateMacademiaNut. Cookies are dumped as JSON objects using Chrome's own format. The same format is used for cookies to be loaded. For legal use only. Features Dump Chrome...

GLSA-202309-17 : Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202309-17 Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities - Type confusion in V8 in Google Chrome prior to 110.0.5481.77 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

Authorization Bypass

chromium is vulnerable to Authorization Bypasses. The vulnerability exists in the DevTools module of Google Chrome. The module is responsible for providing developers with tools to debug and inspect web pages. The vulnerability occurs when the module fails to properly check the permissions of a...

Google Chrome Input Validation Error Vulnerability (CNVD-2023-64445)

Google Chrome is a web browser from Google, an American company. An input validation error vulnerability exists in versions of Google Chrome prior to 106.0.5249.62, which stems from insufficient DevTools data validation. A remote attacker can exploit this vulnerability by sending a malicious HTTP...

Google Chrome Resource Management Error Vulnerability (CNVD-2023-64446)

Google Chrome is a web browser from Google, an American company. A resource management error vulnerability previously existed in Google Chrome version 91.0.4472.77, which stemmed from the existence of DevTools free after use. An attacker could exploit the vulnerability to cause the browser to cra...

Google Chrome Security Bypass Vulnerability (CNVD-2023-63444)

Google Chrome is a web browser from Google, an American company. A security bypass vulnerability exists in Google Chrome versions prior to 108.0.5359.71 due to an improper implementation in DevTools. An attacker can use this vulnerability to bypass file access restrictions to install malicious...

Improper Input Validation

chromium is vulnerable to Improper Input Validation. Insufficient data validation in DevTools allow a remote attacker to bypass navigation restrictions via a crafted HTML page...

Use After Free

chromium is vulnerable to Use After Free. The vulnerability exists in the DevTools in the library, which allows an attacker to cause heap corruption via a maliciously crafted HTML page through the renderer process...

The vulnerability of the DevTools set of tools for web development in Google Chrome allows a hacker to circumvent existing navigation restrictions.

The vulnerability of the DevTools set of tools for web development in Google Chrome is related to insufficient verification of data authenticity. Exploiting this vulnerability could allow an attacker to circumvent existing navigation restrictions remotely...

Access Restriction Bypass

chromium is vulnerable to Access Restriction Bypass. The vulnerability exists due to insufficient data validation in DevTools in Google Chrome which allows a remote attacker to bypass content security policy via a crafted HTML page...

Use After Free

chromium is vulnerable to Use After Free. The vulnerability exists in the DevTools in the library, which allows an attacker to convince user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension...

CVE-2022-4955

Inappropriate implementation in DevTools in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted HTML page. Chromium security severity: Medium...

DEBIAN-CVE-2022-4955

Inappropriate implementation in DevTools in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted HTML page. Chromium security severity: Medium...

CVE-2022-4955

Inappropriate implementation in DevTools in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted HTML page. Chromium security severity: Medium...

Design/Logic Flaw

Inappropriate implementation in DevTools in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted HTML page. Chromium security severity: Medium...

CVE-2022-4955

Inappropriate implementation in DevTools in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted HTML page. Chromium security severity: Medium...