Chrome@25.0.1364.114 Security Vulnerabilities and Issues — Chrome@25.0.1364.114 CVE List

Lucene search

GoogleChrome25.0.1364.114

11 matches found

CVE•added 2013/03/05 9:55 p.m.•104 views

CVE-2013-0904

The Web Audio implementation in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.

7.5CVSS7.1AI score0.00656EPSS

CVE•added 2013/03/11 10:55 a.m.•97 views

CVE-2013-0912

WebKit in Google Chrome before 25.0.1364.160 allows remote attackers to execute arbitrary code via vectors that leverage "type confusion."

7.5CVSS7.2AI score0.01824EPSS

CVE•added 2013/03/05 9:55 p.m.•68 views

CVE-2013-0905

Use-after-free vulnerability in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving an SVG animation.

7.5CVSS7AI score0.00609EPSS

CVE•added 2013/03/05 9:55 p.m.•67 views

CVE-2013-0909

The XSS Auditor in Google Chrome before 25.0.1364.152 allows remote attackers to obtain sensitive HTTP Referer information via unspecified vectors.

5CVSS5.1AI score0.0025EPSS

CVE•added 2013/03/05 9:55 p.m.•59 views

CVE-2013-0911

Directory traversal vulnerability in Google Chrome before 25.0.1364.152 allows remote attackers to have an unspecified impact via vectors related to databases.

7.5CVSS6.1AI score0.00283EPSS

CVE•added 2013/03/05 9:55 p.m.•56 views

CVE-2013-0902

Use-after-free vulnerability in the frame-loader implementation in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

7.5CVSS7.1AI score0.00609EPSS

CVE•added 2013/03/05 9:55 p.m.•54 views

CVE-2013-0906

The IndexedDB implementation in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.

7.5CVSS7.1AI score0.00519EPSS

CVE•added 2013/03/05 9:55 p.m.•54 views

CVE-2013-0910

Google Chrome before 25.0.1364.152 does not properly manage the interaction between the browser process and renderer processes during authorization of the loading of a plug-in, which makes it easier for remote attackers to bypass intended access restrictions via vectors involving a blocked plug-in.

7.5CVSS6.1AI score0.0036EPSS

CVE•added 2013/03/05 9:55 p.m.•53 views

CVE-2013-0903

7.5CVSS7AI score0.00561EPSS

CVE•added 2013/03/05 9:55 p.m.•53 views

CVE-2013-0908

Google Chrome before 25.0.1364.152 does not properly manage bindings of extension processes, which has unspecified impact and attack vectors.

7.5CVSS6.1AI score0.00195EPSS

CVE•added 2013/03/05 9:55 p.m.•51 views

CVE-2013-0907

Race condition in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of media threads.

7.5CVSS7AI score0.00402EPSS