Google

Chrome

3675 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2011-3083

  • EPSS 2.17%
  • Veröffentlicht 16.05.2012 00:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

browser/profiles/profile_impl_io_data.cc in Google Chrome before 19.0.1084.46 does not properly handle a malformed ftp URL in the SRC attribute of a VIDEO element, which allows remote attackers to cause a denial of service (NULL pointer dereference a...

7.5

CVE-2011-3084

  • EPSS 0.42%
  • Veröffentlicht 16.05.2012 00:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Google Chrome before 19.0.1084.46 does not use a dedicated process for the loading of links found on an internal page, which might allow attackers to bypass intended sandbox restrictions via a crafted page.

5

CVE-2011-3085

  • EPSS 1.46%
  • Veröffentlicht 16.05.2012 00:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The Autofill feature in Google Chrome before 19.0.1084.46 does not properly restrict field values, which allows remote attackers to cause a denial of service (UI corruption) and possibly conduct spoofing attacks via vectors involving long values.

10

CVE-2011-3086

  • EPSS 7.53%
  • Veröffentlicht 16.05.2012 00:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a STYLE element.

10

CVE-2011-3087

  • EPSS 0.85%
  • Veröffentlicht 16.05.2012 00:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Google Chrome before 19.0.1084.46 does not properly perform window navigation, which has unspecified impact and remote attack vectors.

6.8

CVE-2011-3078

Exploit
  • EPSS 7.35%
  • Veröffentlicht 01.05.2012 10:12:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in Google Chrome before 18.0.1025.168 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the floating of elements, a different vulnerability than CVE-2011...

10

CVE-2011-3079

  • EPSS 0.83%
  • Veröffentlicht 01.05.2012 10:12:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The Inter-process Communication (IPC) implementation in Google Chrome before 18.0.1025.168, as used in Mozilla Firefox before 38.0 and other products, does not properly validate messages, which has unspecified impact and attack vectors.

7.6

CVE-2011-3080

  • EPSS 0.39%
  • Veröffentlicht 01.05.2012 10:12:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Race condition in the Inter-process Communication (IPC) implementation in Google Chrome before 18.0.1025.168 allows attackers to bypass intended sandbox restrictions via unspecified vectors.

9.3

CVE-2011-3081

Exploit
  • EPSS 7.35%
  • Veröffentlicht 01.05.2012 10:12:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in Google Chrome before 18.0.1025.168 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the floating of elements, a different vulnerability than CVE-2011...

6.8

CVE-2012-1521

Exploit
  • EPSS 7.35%
  • Veröffentlicht 01.05.2012 10:12:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the XML parser in Google Chrome before 18.0.1025.168 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.