Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
GoogleChrome

174 matches found

CVE
CVEadded 2013/03/28 12:18 p.m.54 views

CVE-2013-0926

Google Chrome before 26.0.1410.43 does not properly handle active content in an EMBED element during a copy-and-paste operation, which allows user-assisted remote attackers to have an unspecified impact via a crafted web site.

6.8CVSS6.1AI score0.01452EPSS
CVE
CVEadded 2013/02/23 9:55 p.m.54 views

CVE-2013-2268

Unspecified vulnerability in the MathML implementation in WebKit in Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, has unknown impact and remote attack vectors, related to a "high severity security issue."

7.5CVSS6.2AI score0.00107EPSS
CVE
CVEadded 2013/01/15 9:55 p.m.53 views

CVE-2013-0830

The IPC layer in Google Chrome before 24.0.1312.52 on Windows omits a NUL character required for termination of an unspecified data structure, which has unknown impact and attack vectors.

7.5CVSS6.1AI score0.00198EPSS
CVE
CVEadded 2013/01/24 9:55 p.m.53 views

CVE-2013-0839

Use-after-free vulnerability in Google Chrome before 24.0.1312.56 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of fonts in CANVAS elements.

7.5CVSS7AI score0.00609EPSS
CVE
CVEadded 2013/01/24 9:55 p.m.53 views

CVE-2013-0840

Google Chrome before 24.0.1312.56 does not validate URLs during the opening of new windows, which has unspecified impact and remote attack vectors.

10CVSS6.3AI score0.00342EPSS
CVE
CVEadded 2013/01/24 9:55 p.m.53 views

CVE-2013-0842

Google Chrome before 24.0.1312.56 does not properly handle %00 characters in pathnames, which has unspecified impact and attack vectors.

10CVSS6.1AI score0.00342EPSS
CVE
CVEadded 2013/03/28 12:18 p.m.53 views

CVE-2013-0924

The extension functionality in Google Chrome before 26.0.1410.43 does not verify that use of the permissions API is consistent with file permissions, which has unspecified impact and attack vectors.

7.5CVSS6AI score0.00147EPSS
CVE
CVEadded 2013/02/23 9:55 p.m.52 views

CVE-2013-0884

Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, does not properly load Native Client (aka NaCl) code, which has unspecified impact and attack vectors.

6.8CVSS6.2AI score0.00258EPSS
CVE
CVEadded 2013/03/05 9:55 p.m.52 views

CVE-2013-0903

Use-after-free vulnerability in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of browser navigation.

7.5CVSS7AI score0.00561EPSS
CVE
CVEadded 2013/03/05 9:55 p.m.52 views

CVE-2013-0908

Google Chrome before 25.0.1364.152 does not properly manage bindings of extension processes, which has unspecified impact and attack vectors.

7.5CVSS6.1AI score0.00195EPSS
CVE
CVEadded 2013/10/02 10:35 a.m.52 views

CVE-2013-2914

Use-after-free vulnerability in the color-chooser dialog in Google Chrome before 30.0.1599.66 on Windows allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to color_chooser_dialog.cc and color_chooser_win.cc in browser/ui/views/.

6.8CVSS7AI score0.0109EPSS
CVE
CVEadded 2013/01/15 9:55 p.m.51 views

CVE-2013-0838

Google Chrome before 24.0.1312.52 on Linux uses weak permissions for shared memory segments, which has unspecified impact and attack vectors.

7.5CVSS6.2AI score0.00147EPSS
CVE
CVEadded 2013/01/24 9:55 p.m.51 views

CVE-2013-0841

Array index error in the content-blocking functionality in Google Chrome before 24.0.1312.56 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

7.5CVSS7.1AI score0.00519EPSS
CVE
CVEadded 2013/02/23 9:55 p.m.51 views

CVE-2013-0889

Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, does not properly enforce a user gesture requirement before proceeding with a file download, which might make it easier for remote attackers to execute arbitrary code via a crafted file.

6.8CVSS7.3AI score0.01642EPSS
CVE
CVEadded 2013/03/05 9:55 p.m.51 views

CVE-2013-0907

Race condition in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of media threads.

7.5CVSS7AI score0.00402EPSS
CVE
CVEadded 2013/05/22 1:29 p.m.51 views

CVE-2013-2836

Multiple unspecified vulnerabilities in Google Chrome before 27.0.1453.93 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.

7.5CVSS6.9AI score0.00684EPSS
CVE
CVEadded 2013/01/15 9:55 p.m.50 views

CVE-2013-0828

The PDF functionality in Google Chrome before 24.0.1312.52 does not properly perform a cast of an unspecified variable during processing of the root of the structure tree, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted document.

6.8CVSS6.7AI score0.00569EPSS
CVE
CVEadded 2013/02/23 9:55 p.m.50 views

CVE-2013-0895

Google Chrome before 25.0.1364.97 on Linux, and before 25.0.1364.99 on Mac OS X, does not properly handle pathnames during copy operations, which might make it easier for remote attackers to execute arbitrary programs via unspecified vectors.

7.5CVSS7.1AI score0.00466EPSS
CVE
CVEadded 2013/01/15 9:55 p.m.49 views

CVE-2013-0829

Google Chrome before 24.0.1312.52 does not properly maintain database metadata, which allows remote attackers to bypass intended file-access restrictions via unspecified vectors.

6.4CVSS6.2AI score0.00172EPSS
CVE
CVEadded 2013/01/15 9:55 p.m.48 views

CVE-2013-0832

Use-after-free vulnerability in Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to printing.

7.5CVSS7AI score0.00712EPSS
CVE
CVEadded 2013/07/10 10:55 a.m.48 views

CVE-2013-2874

Google Chrome before 28.0.1500.71 on Windows, when an Nvidia GPU is used, allows remote attackers to bypass intended restrictions on access to screen data via vectors involving IPC transmission of GL textures.

4.3CVSS6.2AI score0.00064EPSS
CVE
CVEadded 2013/01/15 9:55 p.m.46 views

CVE-2012-5157

Google Chrome before 24.0.1312.52 does not properly handle image data in PDF documents, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted document.

4.3CVSS6AI score0.00804EPSS
CVE
CVEadded 2013/01/15 9:55 p.m.40 views

CVE-2012-5155

Google Chrome before 24.0.1312.52 on Mac OS X does not use an appropriate sandboxing approach for worker processes, which makes it easier for remote attackers to bypass intended access restrictions via unspecified vectors.

5CVSS6.3AI score0.00085EPSS
CVE
CVEadded 2013/02/23 9:55 p.m.40 views

CVE-2013-0886

Google Chrome before 25.0.1364.99 on Mac OS X does not properly implement signal handling for Native Client (aka NaCl) code, which has unspecified impact and attack vectors.

7.5CVSS6.3AI score0.00195EPSS
Total number of security vulnerabilities174