Chrome Security Vulnerabilities and Issues — Page 74 of Chrome CVE List

Lucene search

GoogleChrome

3663 matches found

CVE•added 2025/08/07 2:15 a.m.•22 views

CVE-2025-8578

Use after free in Cast in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

8.8CVSS6.4AI score0.00129EPSS

CVE•added 2025/08/07 2:15 a.m.•21 views

CVE-2025-8582

Insufficient validation of untrusted input in Core in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: Low)

4.3CVSS5.2AI score0.0009EPSS

CVE•added 2025/08/07 2:15 a.m.•18 views

CVE-2025-8577

Inappropriate implementation in Picture In Picture in Google Chrome prior to 139.0.7258.66 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

4.3CVSS5.5AI score0.00048EPSS

CVE•added 2025/08/07 2:15 a.m.•18 views

CVE-2025-8579

4.3CVSS5.4AI score0.00048EPSS

CVE•added 2025/08/07 2:15 a.m.•18 views

CVE-2025-8581

Inappropriate implementation in Extensions in Google Chrome prior to 139.0.7258.66 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)

4.3CVSS5.3AI score0.00046EPSS

CVE•added 2025/08/07 2:15 a.m.•17 views

CVE-2025-8583

Inappropriate implementation in Permissions in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

4.3CVSS5.4AI score0.00034EPSS

CVE•added 2025/08/13 3:15 a.m.•17 views

CVE-2025-8879

Heap buffer overflow in libaom in Google Chrome prior to 139.0.7258.127 allowed a remote attacker to potentially exploit heap corruption via a curated set of gestures. (Chromium security severity: High)

8.8CVSS7.6AI score0.00074EPSS

CVE•added 2025/08/07 2:15 a.m.•16 views

CVE-2025-8580

Inappropriate implementation in Filesystems in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

4.3CVSS5.5AI score0.00048EPSS

CVE•added 2025/08/13 3:15 a.m.•15 views

CVE-2025-8881

Inappropriate implementation in File Picker in Google Chrome prior to 139.0.7258.127 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)

6.5CVSS6.2AI score0.00016EPSS

CVE•added 2025/08/13 3:15 a.m.•14 views

CVE-2025-8882

Use after free in Aura in Google Chrome prior to 139.0.7258.127 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

8.8CVSS7.2AI score0.00109EPSS

CVE•added 2025/08/13 3:15 a.m.•12 views

CVE-2025-8880

Race in V8 in Google Chrome prior to 139.0.7258.127 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

8.8CVSS7.7AI score0.00086EPSS

CVE•added 2025/08/13 3:15 a.m.•12 views

CVE-2025-8901

Out of bounds write in ANGLE in Google Chrome prior to 139.0.7258.127 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

8.8CVSS6.7AI score0.00101EPSS

CVE•added 2 days ago•10 views

CVE-2025-9478

Use after free in ANGLE in Google Chrome prior to 139.0.7258.154 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)

8.8CVSS6.7AI score0.00035EPSS

Total number of security vulnerabilities3663