Chrome Os Security Vulnerabilities and Issues — Chrome Os CVE List

Lucene search

GoogleChrome Os

8 matches found

CVE•added 2019/11/06 8:15 p.m.•120 views

CVE-2014-3180

In kernel/compat.c in the Linux kernel before 3.17, as used in Google Chrome OS and other products, there is a possible out-of-bounds read. restart_syscall uses uninitialized data when restarting compat_sys_nanosleep. NOTE: this is disputed because the code path is unreachable

9.1CVSS8.5AI score0.00175EPSS

CVE•added 2011/01/14 5:0 p.m.•90 views

CVE-2011-0480

Multiple buffer overflows in vorbis_dec.c in the Vorbis decoder in FFmpeg, as used in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344, allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a craf...

9.3CVSS7.4AI score0.02234EPSS

CVE•added 2018/02/07 11:29 p.m.•77 views

CVE-2017-15400

Insufficient restriction of IPP filters in CUPS in Google Chrome OS prior to 62.0.3202.74 allowed a remote attacker to execute a command with the same privileges as the cups daemon via a crafted PPD file, aka a printer zeroconfig CRLF issue.

9.3CVSS7.7AI score0.00411EPSS

CVE•added 2011/01/14 5:0 p.m.•58 views

CVE-2011-0472

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle the printing of PDF documents, which allows user-assisted remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a multi-page document.

9.3CVSS7.2AI score0.05744EPSS

CVE•added 2019/10/01 12:15 p.m.•47 views

CVE-2019-16508

The Imagination Technologies driver for Chrome OS before R74-11895.B, R75 before R75-12105.B, and R76 before R76-12208.0.0 allows attackers to trigger an Integer Overflow and gain privileges via a malicious application. This occurs because of intentional access for the GPU process to /dev/dri/card1...

9.3CVSS7.6AI score0.00062EPSS

CVE•added 2011/01/14 5:0 p.m.•44 views

CVE-2011-0475

Use-after-free vulnerability in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a PDF document.

9.3CVSS7.2AI score0.0684EPSS

CVE•added 2011/01/14 5:0 p.m.•44 views

CVE-2011-0481

Buffer overflow in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to PDF shading.

9.3CVSS7.5AI score0.03541EPSS

CVE•added 2025/06/16 5:15 p.m.•21 views

CVE-2025-6179

Permissions Bypass in Extension Management in Google ChromeOS 16181.27.0 on managed Chrome devices allows a local attacker to disable extensions and access Developer Mode, including loading additional extensions via exploiting vulnerabilities using the ExtHang3r and ExtPrint3r tools.

9.8CVSS6.4AI score0.00027EPSS