10 matches found
Design/Logic Flaw
Inappropriate implementation in Autofill in Google Chrome prior to 115.0.5790.98 allowed a remote attacker to obfuscate security UI via a crafted HTML page. Chromium security severity: Medium...
Google Chrome Resource Management Error Vulnerability
Google Chrome is a web browser from Google, Inc. A resource management error vulnerability previously existed in Google Chrome version 115.0.5790.98, which stemmed from a post-release reuse issue in Splitscreen...
SUSE CVE-2023-3732
Out of bounds memory access in Mojo in Google Chrome prior to 115.0.5790.98 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
SUSE CVE-2023-3730
Use after free in Tab Groups in Google Chrome prior to 115.0.5790.98 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
Vulnerabilities fixed in Google Chrome
Google has fixed vulnerabilities in Chrome. A malicious person could exploit the vulnerabilities to circumvent a security measure circumvention, execute code with user privileges or access gain access to sensitive data in the context of the browser. To do this, the malicious party must trick the...
PT-2023-9328 · Google +2 · Skia +3
Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 115.0.5790.98 Description: The issue is related to an inappropriate implementation in the Skia graphics library of Google Chrome, which can be exploited by a remote attacker to potentially perform a sandbox...
PT-2023-3713 · Google +2 · Google Chrome +2
Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 115.0.5790.98 Description: The issue is related to a use after free vulnerability in the Tab Groups component of Google Chrome, which can lead to heap corruption. This can be exploited by a remote attacker who...
PT-2023-3719 · Google +2 · Google Chrome +2
Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 115.0.5790.98 Description: The issue is related to insufficient validation of untrusted input in the Themes component of Google Chrome, allowing a remote attacker to potentially serve malicious content to a use...
PT-2023-3571 · Google +2 · Google Chrome +2
Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 115.0.5790.98 Description: The issue is related to a use after free in WebRTC, which could allow a remote attacker to potentially exploit heap corruption via a crafted HTML page. This could lead to arbitrary co...
PT-2023-3711 · Google +1 · Google Chrome +1
Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 115.0.5790.98 Description: The issue is related to an inappropriate implementation in the Notifications component of Google Chrome, which allowed a remote attacker to spoof the contents of media notifications v...