Google

Chrome

3675 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2024-7004

  • EPSS 0.03%
  • Published 06.08.2024 16:15:50
  • Last modified 29.10.2024 20:35:41

Insufficient validation of untrusted input in Safe Browsing in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass discretionary access control via a malicious file. (Chromiu...

4.3

CVE-2024-7005

  • EPSS 0.03%
  • Published 06.08.2024 16:15:50
  • Last modified 07.08.2024 19:56:48

Insufficient validation of untrusted input in Safe Browsing in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass discretionary access control via a malicious file. (Chromiu...

8.8

CVE-2024-6988

  • EPSS 0.22%
  • Published 06.08.2024 16:15:49
  • Last modified 07.08.2024 20:51:56

Use after free in Downloads in Google Chrome on iOS prior to 127.0.6533.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2024-6989

  • EPSS 0.22%
  • Published 06.08.2024 16:15:49
  • Last modified 07.08.2024 22:10:20

Use after free in Loader in Google Chrome prior to 127.0.6533.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2024-6990

  • EPSS 0.3%
  • Published 01.08.2024 18:15:26
  • Last modified 16.08.2024 15:21:14

Uninitialized Use in Dawn in Google Chrome on Android prior to 127.0.6533.88 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Critical)

8.8

CVE-2024-7255

  • EPSS 0.55%
  • Published 01.08.2024 18:15:26
  • Last modified 29.10.2024 20:35:42

Out of bounds read in WebTransport in Google Chrome prior to 127.0.6533.88 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2024-7256

Exploit
  • EPSS 0.47%
  • Published 01.08.2024 18:15:26
  • Last modified 02.01.2025 17:41:48

Insufficient data validation in Dawn in Google Chrome on Android prior to 127.0.6533.88 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2024-3173

Exploit
  • EPSS 0.5%
  • Published 16.07.2024 23:15:24
  • Last modified 21.11.2024 09:29:04

Insufficient data validation in Updater in Google Chrome prior to 120.0.6099.62 allowed a remote attacker to perform OS-level privilege escalation via a malicious file. (Chromium security severity: High)

8.8

CVE-2024-3174

Exploit
  • EPSS 0.7%
  • Published 16.07.2024 23:15:24
  • Last modified 20.03.2025 15:15:42

Inappropriate implementation in V8 in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. (Chromium security severity: High)

6.3

CVE-2024-3175

Exploit
  • EPSS 0.46%
  • Published 16.07.2024 23:15:24
  • Last modified 21.11.2024 09:29:04

Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.62 allowed a remote attacker to perform privilege escalation via a crafted Chrome Extension. (Chromium security severity: Low)