Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
GoogleChrome

259 matches found

CVE
CVEadded 2024/08/06 9:16 p.m.207 views

CVE-2024-7536

Use after free in WebAudio in Google Chrome prior to 127.0.6533.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8CVSS7.1AI score0.00205EPSS
CVE
CVEadded 2024/08/21 9:15 p.m.207 views

CVE-2024-7973

Heap buffer overflow in PDFium in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to perform an out of bounds memory read via a crafted PDF file. (Chromium security severity: Medium)

8.8CVSS6.9AI score0.00112EPSS
CVE
CVEadded 2024/08/06 9:16 p.m.205 views

CVE-2024-7534

Heap buffer overflow in Layout in Google Chrome prior to 127.0.6533.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8CVSS7.3AI score0.00241EPSS
CVE
CVEadded 2024/10/15 9:15 p.m.187 views

CVE-2024-9963

Insufficient data validation in Downloads in Google Chrome prior to 130.0.6723.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

4.3CVSS6.3AI score0.00078EPSS
CVE
CVEadded 2024/10/15 9:15 p.m.185 views

CVE-2024-9958

Inappropriate implementation in PictureInPicture in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

4.3CVSS6.4AI score0.00078EPSS
CVE
CVEadded 2024/10/15 9:15 p.m.180 views

CVE-2024-9966

Inappropriate implementation in Navigations in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to bypass content security policy via a crafted HTML page. (Chromium security severity: Low)

5.3CVSS6.4AI score0.00045EPSS
CVE
CVEadded 2024/10/15 9:15 p.m.176 views

CVE-2024-9964

Inappropriate implementation in Payments in Google Chrome prior to 130.0.6723.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted Chrome Extension. (Chromium security severity: Low)

4.3CVSS6.6AI score0.00078EPSS
CVE
CVEadded 2024/10/15 9:15 p.m.170 views

CVE-2024-9962

Inappropriate implementation in Permissions in Google Chrome prior to 130.0.6723.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

4.3CVSS6.4AI score0.00067EPSS
CVE
CVEadded 2024/05/07 7:15 p.m.167 views

CVE-2024-4558

Use after free in ANGLE in Google Chrome prior to 124.0.6367.155 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

9.6CVSS6.5AI score0.01413EPSS
CVE
CVEadded 2024/03/20 5:15 p.m.159 views

CVE-2024-2625

Object lifecycle issue in V8 in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. (Chromium security severity: High)

8.8CVSS8.2AI score0.006EPSS
CVE
CVEadded 2024/03/26 9:15 p.m.157 views

CVE-2024-2883

Use after free in ANGLE in Google Chrome prior to 123.0.6312.86 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)

8.8CVSS6.5AI score0.00196EPSS
CVE
CVEadded 2024/02/07 12:15 a.m.150 views

CVE-2024-1283

Heap buffer overflow in Skia in Google Chrome prior to 121.0.6167.160 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

9.8CVSS9.3AI score0.03431EPSS
CVE
CVEadded 2024/03/20 5:15 p.m.147 views

CVE-2024-2627

Use after free in Canvas in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

8.8CVSS8.8AI score0.00454EPSS
CVE
CVEadded 2024/11/27 6:15 p.m.137 views

CVE-2024-9369

Insufficient data validation in Mojo in Google Chrome prior to 129.0.6668.89 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: High)

9.6CVSS6.1AI score0.00329EPSS
CVE
CVEadded 2024/03/20 5:15 p.m.135 views

CVE-2024-2626

Out of bounds read in Swiftshader in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Medium)

6.5CVSS6.6AI score0.00094EPSS
CVE
CVEadded 2024/03/26 9:15 p.m.133 views

CVE-2024-2886

Use after free in WebCodecs in Google Chrome prior to 123.0.6312.86 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High)

7.5CVSS6.3AI score0.00344EPSS
CVE
CVEadded 2024/02/29 1:43 a.m.130 views

CVE-2024-1938

Type Confusion in V8 in Google Chrome prior to 122.0.6261.94 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. (Chromium security severity: High)

8.8CVSS6.3AI score0.00205EPSS
CVE
CVEadded 2024/09/25 1:15 a.m.127 views

CVE-2024-9120

Use after free in Dawn in Google Chrome on Windows prior to 129.0.6668.70 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8CVSS7.1AI score0.00159EPSS
CVE
CVEadded 2024/02/07 12:15 a.m.126 views

CVE-2024-1284

Use after free in Mojo in Google Chrome prior to 121.0.6167.160 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

9.8CVSS9.4AI score0.01471EPSS
CVE
CVEadded 2024/01/04 2:15 a.m.122 views

CVE-2024-0225

Use after free in WebGPU in Google Chrome prior to 120.0.6099.199 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8CVSS8.8AI score0.00471EPSS
CVE
CVEadded 2024/01/24 12:15 a.m.118 views

CVE-2024-0808

Integer underflow in WebUI in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially exploit heap corruption via a malicious file. (Chromium security severity: High)

9.8CVSS9AI score0.00495EPSS
CVE
CVEadded 2024/03/26 9:15 p.m.118 views

CVE-2024-2887

Type Confusion in WebAssembly in Google Chrome prior to 123.0.6312.86 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)

8.1CVSS6.7AI score0.05374EPSS
CVE
CVEadded 2024/01/24 12:15 a.m.112 views

CVE-2024-0804

Insufficient policy enforcement in iOS Security UI in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)

7.5CVSS7.1AI score0.00148EPSS
CVE
CVEadded 2024/03/26 9:15 p.m.111 views

CVE-2024-2885

Use after free in Dawn in Google Chrome prior to 123.0.6312.86 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8CVSS6.5AI score0.00181EPSS
CVE
CVEadded 2024/03/20 5:15 p.m.110 views

CVE-2024-2628

Inappropriate implementation in Downloads in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to perform UI spoofing via a crafted URL. (Chromium security severity: Medium)

4.3CVSS5AI score0.00164EPSS
CVE
CVEadded 2024/01/10 10:15 p.m.107 views

CVE-2024-0333

Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.216 allowed an attacker in a privileged network position to install a malicious extension via a crafted HTML page. (Chromium security severity: High)

5.3CVSS4.6AI score0.00097EPSS
CVE
CVEadded 2024/03/20 5:15 p.m.106 views

CVE-2024-2631

Inappropriate implementation in iOS in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

4.3CVSS4.7AI score0.00239EPSS
CVE
CVEadded 2024/09/25 1:15 a.m.106 views

CVE-2024-9121

Inappropriate implementation in V8 in Google Chrome prior to 129.0.6668.70 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

8.8CVSS6.4AI score0.00141EPSS
CVE
CVEadded 2024/01/04 2:15 a.m.105 views

CVE-2024-0224

Use after free in WebAudio in Google Chrome prior to 120.0.6099.199 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8CVSS8.8AI score0.00565EPSS
CVE
CVEadded 2024/01/24 12:15 a.m.104 views

CVE-2024-0810

Insufficient policy enforcement in DevTools in Google Chrome prior to 121.0.6167.85 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. (Chromium security severity: Medium)

4.3CVSS5.4AI score0.00095EPSS
CVE
CVEadded 2024/01/24 12:15 a.m.102 views

CVE-2024-0805

Inappropriate implementation in Downloads in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to perform domain spoofing via a crafted domain name. (Chromium security severity: Medium)

4.3CVSS5.4AI score0.00193EPSS
CVE
CVEadded 2024/09/25 1:15 a.m.102 views

CVE-2024-9122

Type Confusion in V8 in Google Chrome prior to 129.0.6668.70 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

8.8CVSS6.4AI score0.01005EPSS
CVE
CVEadded 2024/02/29 1:43 a.m.101 views

CVE-2024-1939

Type Confusion in V8 in Google Chrome prior to 122.0.6261.94 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8CVSS6.4AI score0.29663EPSS
CVE
CVEadded 2024/03/20 5:15 p.m.101 views

CVE-2024-2630

Inappropriate implementation in iOS in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)

6.5CVSS6AI score0.00123EPSS
CVE
CVEadded 2024/01/24 12:15 a.m.100 views

CVE-2024-0814

Incorrect security UI in Payments in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially spoof security UI via a crafted HTML page. (Chromium security severity: Medium)

6.5CVSS6.7AI score0.00129EPSS
CVE
CVEadded 2024/04/10 7:15 p.m.100 views

CVE-2024-3516

Heap buffer overflow in ANGLE in Google Chrome prior to 123.0.6312.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8CVSS6.5AI score0.00455EPSS
CVE
CVEadded 2024/01/16 10:15 p.m.99 views

CVE-2024-0518

Type confusion in V8 in Google Chrome prior to 120.0.6099.224 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8CVSS8.4AI score0.00263EPSS
CVE
CVEadded 2024/01/24 12:15 a.m.99 views

CVE-2024-0812

Inappropriate implementation in Accessibility in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. (Chromium security severity: High)

8.8CVSS8.6AI score0.00473EPSS
CVE
CVEadded 2024/01/04 2:15 a.m.98 views

CVE-2024-0222

Use after free in ANGLE in Google Chrome prior to 120.0.6099.199 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8CVSS8.8AI score0.0056EPSS
CVE
CVEadded 2024/10/22 10:15 p.m.98 views

CVE-2024-10231

Type Confusion in V8 in Google Chrome prior to 130.0.6723.69 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8CVSS6.6AI score0.00177EPSS
CVE
CVEadded 2024/01/30 10:15 p.m.98 views

CVE-2024-1077

Use after free in Network in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially exploit heap corruption via a malicious file. (Chromium security severity: High)

8.8CVSS8.8AI score0.00416EPSS
CVE
CVEadded 2024/01/24 12:15 a.m.97 views

CVE-2024-0807

Use after free in Web Audio in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8CVSS9.2AI score0.00364EPSS
CVE
CVEadded 2024/01/24 12:15 a.m.97 views

CVE-2024-0811

Inappropriate implementation in Extensions API in Google Chrome prior to 121.0.6167.85 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. (Chromium security severity: Low)

4.3CVSS5.4AI score0.00385EPSS
CVE
CVEadded 2024/01/30 10:15 p.m.96 views

CVE-2024-1059

Use after free in Peer Connection in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially exploit stack corruption via a crafted HTML page. (Chromium security severity: High)

8.8CVSS8.6AI score0.00416EPSS
CVE
CVEadded 2024/03/13 4:15 a.m.96 views

CVE-2024-2400

Use after free in Performance Manager in Google Chrome prior to 122.0.6261.128 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8CVSS6.2AI score0.00125EPSS
CVE
CVEadded 2024/10/15 9:15 p.m.96 views

CVE-2024-9956

Inappropriate implementation in WebAuthentication in Google Chrome on Android prior to 130.0.6723.58 allowed a local attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: Medium)

7.8CVSS6.5AI score0.00029EPSS
CVE
CVEadded 2024/05/07 7:15 p.m.95 views

CVE-2024-4559

Heap buffer overflow in WebAudio in Google Chrome prior to 124.0.6367.155 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

7.5CVSS6.6AI score0.00327EPSS
CVE
CVEadded 2024/01/30 10:15 p.m.94 views

CVE-2024-1060

Use after free in Canvas in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8CVSS8.8AI score0.00331EPSS
CVE
CVEadded 2024/07/16 11:15 p.m.94 views

CVE-2024-3176

Out of bounds write in SwiftShader in Google Chrome prior to 117.0.5938.62 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: High)

8.8CVSS6.4AI score0.00476EPSS
CVE
CVEadded 2024/01/04 2:15 a.m.93 views

CVE-2024-0223

Heap buffer overflow in ANGLE in Google Chrome prior to 120.0.6099.199 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8CVSS8.7AI score0.09619EPSS
Total number of security vulnerabilities259