Google Chrome Security Vulnerability

Google Chrome is a web browser from Google, Inc. A security vulnerability exists in Google Chrome that originates from an improper implementation in the DevTools module...

Chromecookiestealer - Steal/Inject Chrome Cookies Over The DevTools Protocol

Attaches to Chrome using its Remote DevTools protocol and steals/injects/clears/deletes cookies. Heavily inspired by WhiteChocolateMacademiaNut. Cookies are dumped as JSON objects using Chrome's own format. The same format is used for cookies to be loaded. For legal use only. Features Dump Chrome...

GLSA-202309-17 : Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202309-17 Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities - Type confusion in V8 in Google Chrome prior to 110.0.5481.77 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

Authorization Bypass

chromium is vulnerable to Authorization Bypasses. The vulnerability exists in the DevTools module of Google Chrome. The module is responsible for providing developers with tools to debug and inspect web pages. The vulnerability occurs when the module fails to properly check the permissions of a...

Google Chrome Input Validation Error Vulnerability (CNVD-2023-64445)

Google Chrome is a web browser from Google, an American company. An input validation error vulnerability exists in versions of Google Chrome prior to 106.0.5249.62, which stems from insufficient DevTools data validation. A remote attacker can exploit this vulnerability by sending a malicious HTTP...

Google Chrome Resource Management Error Vulnerability (CNVD-2023-64446)

Google Chrome is a web browser from Google, an American company. A resource management error vulnerability previously existed in Google Chrome version 91.0.4472.77, which stemmed from the existence of DevTools free after use. An attacker could exploit the vulnerability to cause the browser to cra...

Google Chrome Security Bypass Vulnerability (CNVD-2023-63444)

Google Chrome is a web browser from Google, an American company. A security bypass vulnerability exists in Google Chrome versions prior to 108.0.5359.71 due to an improper implementation in DevTools. An attacker can use this vulnerability to bypass file access restrictions to install malicious...

Improper Input Validation

chromium is vulnerable to Improper Input Validation. Insufficient data validation in DevTools allow a remote attacker to bypass navigation restrictions via a crafted HTML page...

Use After Free

chromium is vulnerable to Use After Free. The vulnerability exists in the DevTools in the library, which allows an attacker to cause heap corruption via a maliciously crafted HTML page through the renderer process...

Access Restriction Bypass

chromium is vulnerable to Access Restriction Bypass. The vulnerability exists due to insufficient data validation in DevTools in Google Chrome which allows a remote attacker to bypass content security policy via a crafted HTML page...

Use After Free

chromium is vulnerable to Use After Free. The vulnerability exists in the DevTools in the library, which allows an attacker to convince user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension...

CVE-2022-4955

Inappropriate implementation in DevTools in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted HTML page. Chromium security severity: Medium...

DEBIAN-CVE-2022-4955

Inappropriate implementation in DevTools in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted HTML page. Chromium security severity: Medium...

CVE-2022-4955

Inappropriate implementation in DevTools in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted HTML page. Chromium security severity: Medium...

Design/Logic Flaw

Inappropriate implementation in DevTools in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted HTML page. Chromium security severity: Medium...

CVE-2022-4955

CVE-2022-4955 concerns Google Chrome before 108.0.5359.71, where an improper DevTools implementation could allow a user who installs a crafted extension via a malicious HTML page to bypass file access restrictions. The vulnerability stems from DevTools behavior and enables an attacker to exploit ...

CVE-2022-4955

Inappropriate implementation in DevTools in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted HTML page. Chromium security severity: Medium...

CVE-2022-4955

Inappropriate implementation in DevTools in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted HTML page. Chromium security severity: Medium...

Google Chrome 安全漏洞

Google Chrome is a web browser from Google, an American company. A security bypass vulnerability exists in Google Chrome versions prior to 108.0.5359.71 due to an improper implementation in DevTools. An attacker can use this vulnerability to bypass file access restrictions to install malicious...

CVE-2023-2314

Insufficient data validation in DevTools in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...