Google

Chrome

3675 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2011-2783

  • EPSS 0.71%
  • Published 03.08.2011 00:55:01
  • Last modified 11.04.2025 00:51:21

Google Chrome before 13.0.782.107 does not ensure that developer-mode NPAPI extension installations are confirmed by a browser dialog, which makes it easier for remote attackers to modify the product's functionality via a Trojan horse extension.

2.1

CVE-2011-2784

  • EPSS 0.19%
  • Published 03.08.2011 00:55:01
  • Last modified 11.04.2025 00:51:21

Google Chrome before 13.0.782.107 allows remote attackers to obtain sensitive information via a request for the GL program log, which reveals a local path in an unspecified log entry.

4.3

CVE-2011-2785

  • EPSS 0.38%
  • Published 03.08.2011 00:55:01
  • Last modified 11.04.2025 00:51:21

The extensions implementation in Google Chrome before 13.0.782.107 does not properly validate the URL for the home page, which allows remote attackers to have an unspecified impact via a crafted extension.

4.3

CVE-2011-2786

  • EPSS 0.34%
  • Published 03.08.2011 00:55:01
  • Last modified 11.04.2025 00:51:21

Google Chrome before 13.0.782.107 does not ensure that the speech-input bubble is shown on the product's screen, which might make it easier for remote attackers to make audio recordings via a crafted web page containing an INPUT element.

4.3

CVE-2011-2787

  • EPSS 0.83%
  • Published 03.08.2011 00:55:01
  • Last modified 11.04.2025 00:51:21

Google Chrome before 13.0.782.107 does not properly address re-entrancy issues associated with the GPU lock, which allows remote attackers to cause a denial of service (application crash) via unspecified vectors.

6.8

CVE-2011-2788

  • EPSS 3.15%
  • Published 03.08.2011 00:55:01
  • Last modified 11.04.2025 00:51:21

Buffer overflow in the inspector serialization functionality in Google Chrome before 13.0.782.107 allows user-assisted remote attackers to have an unspecified impact via unknown vectors.

6.8

CVE-2011-2789

  • EPSS 0.83%
  • Published 03.08.2011 00:55:01
  • Last modified 11.04.2025 00:51:21

Use-after-free vulnerability in Google Chrome before 13.0.782.107 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to instantiation of the Pepper plug-in.

6.8

CVE-2011-2790

  • EPSS 2.01%
  • Published 03.08.2011 00:55:01
  • Last modified 11.04.2025 00:51:21

Use-after-free vulnerability in Google Chrome before 13.0.782.107 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving floating styles.

4.3

CVE-2011-2761

Exploit
  • EPSS 1.05%
  • Published 18.07.2011 22:55:01
  • Last modified 11.04.2025 00:51:21

Google Chrome 14.0.794.0 does not properly handle a reload of a page generated in response to a POST, which allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted web site, related to GetWidget methods.

4.3

CVE-2011-2599

Exploit
  • EPSS 0.22%
  • Published 30.06.2011 15:55:04
  • Last modified 11.04.2025 00:51:21

Google Chrome 11 does not block use of a cross-domain image as a WebGL texture, which allows remote attackers to obtain approximate copies of arbitrary images via a timing attack involving a crafted WebGL fragment shader.