14 matches found
CVE-2026-9944
Uninitialized Use in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...
Astra Linux – Vulnerability in Chromium
Inappropriate implementations of Skia in Google Chrome prior to version 88.0.4324.146 allowed a local attacker to spoof the contents of the Omnibox URL bar through a crafted HTML page...
PT-2026-38170
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96 Description An inappropriate implementation in Canvas allows a remote attacker to bypass the same origin policy, which is a security mechanism that restricts how a document or script loaded from on...
CVE-2025-13228
Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
PT-2023-4179 · Google +3 · Google Chrome +3
Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 115.0.5790.170 Description: The issue is related to a use after free in WebRTC, allowing a remote attacker to potentially exploit heap corruption via a crafted WebRTC session. This could lead to arbitrary code...
SUSE CVE-2017-5052
An incorrect assumption about block structure in Blink in Google Chrome prior to 57.0.2987.133 for Mac, Windows, and Linux, and 57.0.2987.132 for Android, allowed a remote attacker to potentially exploit memory corruption via a crafted HTML page that triggers improper casting...
Google Chrome WebRTC Resource Management Error Vulnerability (CNVD-2020-29311)
Google Chrome is a web browser from Google, an American company. A resource management error vulnerability exists in WebRTC in versions of Google Chrome prior to 83.0.4103.61. An attacker can exploit the vulnerability to execute arbitrary code with the help of a specially crafted website...
Google Chrome Out-of-Bounds Read Vulnerability (CNVD-2019-43386)
Chrome is a simple and efficiently designed web browsing tool developed by Google. An out-of-bounds read vulnerability exists in Skia in versions prior to Google Chrome 75.0.3770.80. A remote attacker can exploit this vulnerability to obtain sensitive information from process memory via specially...
UBUNTU-CVE-2018-6142
Array bounds check failure in V8 in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to perform an out of bounds memory read via a crafted PDF file...
CVE-2018-6071
An integer overflow in Skia in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...
CVE-2017-5016
Blink in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, and 56.0.2924.87 for Android, failed to prevent certain UI elements from being displayed by non-visible pages, which allowed a remote attacker to show certain UI elements on a page they don't control via a crafted HTML page...
UBUNTU-CVE-2016-2844
WebKit/Source/core/layout/LayoutBlock.cpp in Blink, as used in Google Chrome before 49.0.2623.75, does not properly determine when anonymous block wrappers may exist, which allows remote attackers to cause a denial of service incorrect cast and assertion failure or possibly have unspecified other...
Google Chrome Blink Information Disclosure Vulnerability
Blink is the United States Google Google Inc. and Norway Opens Opera Software company jointly developed a set of browser layout engine rendering engine. A security vulnerability exists in the 'XSSAuditor::canonicalize' function in the core/html/parser/XSSAuditor.cpp file in the XSS auditor progra...
chromium-browser: out-of-bounds read in PDFium
The sycc422torgb function in fxcodec/codec/fxcodecjpxopj.cpp in PDFium, as used in Google Chrome before 40.0.2214.91, does not properly handle odd values of image width, which allows remote attackers to cause a denial of service out-of-bounds read via a crafted PDF document...