Google

Chrome

3675 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2025-0439

Exploit
  • EPSS 0.08%
  • Published 15.01.2025 11:15:10
  • Last modified 21.04.2025 20:52:49

Race in Frames in Google Chrome prior to 132.0.6834.83 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

6.5

CVE-2025-0440

Exploit
  • EPSS 0.05%
  • Published 15.01.2025 11:15:10
  • Last modified 21.04.2025 20:53:05

Inappropriate implementation in Fullscreen in Google Chrome on Windows prior to 132.0.6834.83 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

6.5

CVE-2025-0441

Exploit
  • EPSS 0.11%
  • Published 15.01.2025 11:15:10
  • Last modified 21.04.2025 20:53:17

Inappropriate implementation in Fenced Frames in Google Chrome prior to 132.0.6834.83 allowed a remote attacker to obtain potentially sensitive information from the system via a crafted HTML page. (Chromium security severity: Medium)

6.5

CVE-2025-0442

Exploit
  • EPSS 0.1%
  • Published 15.01.2025 11:15:10
  • Last modified 21.04.2025 20:53:28

Inappropriate implementation in Payments in Google Chrome prior to 132.0.6834.83 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

8.8

CVE-2025-0443

Exploit
  • EPSS 0.35%
  • Published 15.01.2025 11:15:10
  • Last modified 21.04.2025 20:53:36

Insufficient data validation in Extensions in Google Chrome prior to 132.0.6834.83 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform privilege escalation via a crafted HTML page. (Chromium security severity: ...

4.3

CVE-2025-0446

  • EPSS 0.08%
  • Published 15.01.2025 11:15:10
  • Last modified 21.04.2025 20:53:41

Inappropriate implementation in Extensions in Google Chrome prior to 132.0.6834.83 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted Chrome Extension. (Chromium security severity: Lo...

8.8

CVE-2025-0447

Exploit
  • EPSS 0.35%
  • Published 15.01.2025 11:15:10
  • Last modified 21.04.2025 20:53:47

Inappropriate implementation in Navigation in Google Chrome prior to 132.0.6834.83 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: Low)

4.3

CVE-2025-0448

Exploit
  • EPSS 0.09%
  • Published 15.01.2025 11:15:10
  • Last modified 21.04.2025 20:53:51

Inappropriate implementation in Compositing in Google Chrome prior to 132.0.6834.83 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

8.8

CVE-2025-0434

Exploit
  • EPSS 0.13%
  • Published 15.01.2025 11:15:09
  • Last modified 21.04.2025 17:30:52

Out of bounds memory access in V8 in Google Chrome prior to 132.0.6834.83 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

6.5

CVE-2025-0435

Exploit
  • EPSS 0.07%
  • Published 15.01.2025 11:15:09
  • Last modified 21.04.2025 17:30:01

Inappropriate implementation in Navigation in Google Chrome on Android prior to 132.0.6834.83 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: High)