Chrome Security Vulnerabilities and Issues — Chrome CVE List

Lucene search

GoogleChrome

16 matches found

CVE•added 2011/01/14 5:0 p.m.•90 views

CVE-2011-0480

Multiple buffer overflows in vorbis_dec.c in the Vorbis decoder in FFmpeg, as used in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344, allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a craf...

9.3CVSS7.4AI score0.02234EPSS

CVE•added 2011/01/14 5:0 p.m.•65 views

CVE-2011-0482

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform a cast of an unspecified variable during handling of anchors, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted HTML document.

4.3CVSS9.2AI score0.0327EPSS

CVE•added 2011/01/14 5:0 p.m.•58 views

CVE-2011-0472

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle the printing of PDF documents, which allows user-assisted remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a multi-page document.

9.3CVSS7.2AI score0.05744EPSS

CVE•added 2011/01/14 5:0 p.m.•52 views

CVE-2011-0471

The node-iteration implementation in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 does not properly handle pointers, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

10CVSS7.2AI score0.02883EPSS

CVE•added 2011/01/14 5:0 p.m.•50 views

CVE-2011-0479

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly interact with extensions, which allows remote attackers to cause a denial of service via a crafted extension that triggers an uninitialized pointer.

7.5CVSS6.3AI score0.01558EPSS

CVE•added 2011/01/14 5:0 p.m.•47 views

CVE-2011-0474

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle Cascading Style Sheets (CSS) token sequences in conjunction with cursors, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a ...

10CVSS7.3AI score0.02875EPSS

CVE•added 2011/01/14 5:0 p.m.•47 views

CVE-2011-0476

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 allow remote attackers to cause a denial of service (stack memory corruption) or possibly have unspecified other impact via a PDF document that triggers an out-of-memory error.

10CVSS7.3AI score0.02623EPSS

CVE•added 2011/01/14 5:0 p.m.•44 views

CVE-2011-0475

Use-after-free vulnerability in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a PDF document.

9.3CVSS7.2AI score0.0684EPSS

CVE•added 2011/01/14 5:0 p.m.•44 views

CVE-2011-0481

Buffer overflow in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to PDF shading.

9.3CVSS7.5AI score0.03541EPSS

CVE•added 2011/01/14 5:0 p.m.•44 views

CVE-2011-0484

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform DOM node removal, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale rendering node."

7.5CVSS7.3AI score0.01767EPSS

CVE•added 2011/01/14 5:0 p.m.•43 views

CVE-2011-0477

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle a mismatch in video frame sizes, which allows remote attackers to cause a denial of service (incorrect memory access) or possibly have unspecified other impact via unknown vectors.

10CVSS7.3AI score0.02681EPSS

CVE•added 2011/01/14 5:0 p.m.•42 views

CVE-2011-0470

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle extensions notification, which allows remote attackers to cause a denial of service (application crash) via unspecified vectors.

5CVSS6.4AI score0.01767EPSS

CVE•added 2011/01/14 5:0 p.m.•42 views

CVE-2011-0473

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle Cascading Style Sheets (CSS) token sequences in conjunction with CANVAS elements, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that le...

10CVSS7.3AI score0.04482EPSS

CVE•added 2011/01/14 5:0 p.m.•42 views

CVE-2011-0483

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform a cast of an unspecified variable during handling of video, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

5CVSS7.3AI score0.01767EPSS

CVE•added 2011/01/14 5:0 p.m.•42 views

CVE-2011-0485

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle speech data, which allows remote attackers to execute arbitrary code via unspecified vectors that lead to a "stale pointer."

10CVSS7.6AI score0.06785EPSS

CVE•added 2011/01/14 5:0 p.m.•41 views

CVE-2011-0478

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle SVG use elements, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer."

10CVSS7.3AI score0.02515EPSS