CVE-2024-1284
- EPSS 0.92%
- Published 07.02.2024 00:15:56
- Last modified 15.05.2025 20:15:40
Use after free in Mojo in Google Chrome prior to 121.0.6167.160 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-1060
- EPSS 0.51%
- Published 30.01.2024 22:15:53
- Last modified 29.05.2025 15:15:27
Use after free in Canvas in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-1077
- EPSS 0.64%
- Published 30.01.2024 22:15:53
- Last modified 03.06.2025 19:15:34
Use after free in Network in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially exploit heap corruption via a malicious file. (Chromium security severity: High)
CVE-2024-1059
- EPSS 0.42%
- Published 30.01.2024 22:15:52
- Last modified 08.05.2025 18:15:41
Use after free in Peer Connection in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially exploit stack corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-0809
- EPSS 0.02%
- Published 24.01.2024 00:15:08
- Last modified 15.05.2025 15:16:07
Inappropriate implementation in Autofill in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to bypass Autofill restrictions via a crafted HTML page. (Chromium security severity: Low)
CVE-2024-0810
- EPSS 0.07%
- Published 24.01.2024 00:15:08
- Last modified 22.05.2025 18:15:38
Insufficient policy enforcement in DevTools in Google Chrome prior to 121.0.6167.85 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. (Chromium security severity: Mediu...
CVE-2024-0811
- EPSS 0.26%
- Published 24.01.2024 00:15:08
- Last modified 16.06.2025 19:15:29
Inappropriate implementation in Extensions API in Google Chrome prior to 121.0.6167.85 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. (Chromium security severity: Lo...
CVE-2024-0812
- EPSS 0.33%
- Published 24.01.2024 00:15:08
- Last modified 30.05.2025 15:15:31
Inappropriate implementation in Accessibility in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-0813
- EPSS 0.08%
- Published 24.01.2024 00:15:08
- Last modified 21.11.2024 08:47:25
Use after free in Reading Mode in Google Chrome prior to 121.0.6167.85 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via specific UI interaction. (Chromium security severity: Medium)
CVE-2024-0814
- EPSS 0.13%
- Published 24.01.2024 00:15:08
- Last modified 30.05.2025 15:15:31
Incorrect security UI in Payments in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially spoof security UI via a crafted HTML page. (Chromium security severity: Medium)