Chrome Security Vulnerabilities and Issues — Chrome CVE List

Lucene search

GoogleChrome

5 matches found

CVE•added 2019/12/10 10:15 p.m.•222 views

CVE-2019-13762

Insufficient policy enforcement in downloads in Google Chrome on Windows prior to 79.0.3945.79 allowed a local attacker to spoof downloaded files via local code.

3.3CVSS4.8AI score0.00032EPSS

CVE•added 2024/08/06 4:15 p.m.•81 views

CVE-2024-6996

Race in Frames in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

3.1CVSS6.4AI score0.00086EPSS

CVE•added 2016/09/11 10:59 a.m.•71 views

CVE-2016-5166

The download implementation in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux does not properly restrict saving a file:// URL that is referenced by an http:// URL, which makes it easier for user-assisted remote attackers to discover NetNTLM hashes and conduct...

3.1CVSS5.1AI score0.00633EPSS

CVE•added 2017/10/27 5:29 a.m.•70 views

CVE-2017-5081

Lack of verification of an extension's locale folder in Google Chrome prior to 59.0.3071.86 for Mac, Windows, and Linux, and 59.0.3071.92 for Android, allowed an attacker with local write access to modify extensions by modifying extension files.

3.3CVSS5.1AI score0.00025EPSS

CVE•added 2023/07/29 12:15 a.m.•69 views

CVE-2022-4923

Inappropriate implementation in Omnibox in Google Chrome prior to 99.0.4844.51 allowed an attacker in a privileged network position to perform a man-in-the-middle attack via malicious network traffic. (Chromium security severity: Low)

3.1CVSS5.2AI score0.00051EPSS