Chrome@25.0.1364.86 Security Vulnerabilities and Issues — Chrome@25.0.1364.86 CVE List

Lucene search

GoogleChrome25.0.1364.86

13 matches found

CVE•added 2013/03/05 9:55 p.m.•104 views

CVE-2013-0904

The Web Audio implementation in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.

7.5CVSS7.1AI score0.00656EPSS

CVE•added 2013/03/11 10:55 a.m.•97 views

CVE-2013-0912

WebKit in Google Chrome before 25.0.1364.160 allows remote attackers to execute arbitrary code via vectors that leverage "type confusion."

7.5CVSS7.2AI score0.01824EPSS

CVE•added 2013/03/05 9:55 p.m.•68 views

CVE-2013-0905

Use-after-free vulnerability in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving an SVG animation.

7.5CVSS7AI score0.00609EPSS

CVE•added 2013/03/05 9:55 p.m.•67 views

CVE-2013-0909

The XSS Auditor in Google Chrome before 25.0.1364.152 allows remote attackers to obtain sensitive HTTP Referer information via unspecified vectors.

5CVSS5.1AI score0.0025EPSS

CVE•added 2013/03/05 9:55 p.m.•59 views

CVE-2013-0911

Directory traversal vulnerability in Google Chrome before 25.0.1364.152 allows remote attackers to have an unspecified impact via vectors related to databases.

7.5CVSS6.1AI score0.00283EPSS

CVE•added 2013/03/05 9:55 p.m.•56 views

CVE-2013-0902

Use-after-free vulnerability in the frame-loader implementation in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

7.5CVSS7.1AI score0.00609EPSS

CVE•added 2013/03/05 9:55 p.m.•54 views

CVE-2013-0906

The IndexedDB implementation in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.

7.5CVSS7.1AI score0.00519EPSS

CVE•added 2013/03/05 9:55 p.m.•54 views

CVE-2013-0910

Google Chrome before 25.0.1364.152 does not properly manage the interaction between the browser process and renderer processes during authorization of the loading of a plug-in, which makes it easier for remote attackers to bypass intended access restrictions via vectors involving a blocked plug-in.

7.5CVSS6.1AI score0.0036EPSS

CVE•added 2013/02/23 9:55 p.m.•54 views

CVE-2013-2268

Unspecified vulnerability in the MathML implementation in WebKit in Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, has unknown impact and remote attack vectors, related to a "high severity security issue."

7.5CVSS6.2AI score0.00107EPSS

CVE•added 2013/03/05 9:55 p.m.•52 views

CVE-2013-0903

7.5CVSS7AI score0.00561EPSS

CVE•added 2013/03/05 9:55 p.m.•52 views

CVE-2013-0908

Google Chrome before 25.0.1364.152 does not properly manage bindings of extension processes, which has unspecified impact and attack vectors.

7.5CVSS6.1AI score0.00195EPSS

CVE•added 2013/03/05 9:55 p.m.•51 views

CVE-2013-0907

Race condition in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of media threads.

7.5CVSS7AI score0.00402EPSS

CVE•added 2013/02/23 9:55 p.m.•40 views

CVE-2013-0886

Google Chrome before 25.0.1364.99 on Mac OS X does not properly implement signal handling for Native Client (aka NaCl) code, which has unspecified impact and attack vectors.

7.5CVSS6.3AI score0.00195EPSS