Google

Chrome

3675 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2023-4355

  • EPSS 40.5%
  • Published 15.08.2023 18:15:11
  • Last modified 05.05.2025 16:15:49

Out of bounds memory access in V8 in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2023-2312

  • EPSS 0.75%
  • Published 15.08.2023 18:15:10
  • Last modified 21.11.2024 07:58:21

Use after free in Offline in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2023-4349

  • EPSS 1.73%
  • Published 15.08.2023 18:15:10
  • Last modified 21.11.2024 08:34:54

Use after free in Device Trust Connectors in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

6.5

CVE-2022-4955

Exploit
  • EPSS 0.03%
  • Published 04.08.2023 20:15:09
  • Last modified 21.11.2024 07:36:19

Inappropriate implementation in DevTools in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted HTML page. (Chromium security severity: Medium...

8.8

CVE-2023-4076

  • EPSS 0.78%
  • Published 03.08.2023 01:15:12
  • Last modified 21.11.2024 08:34:21

Use after free in WebRTC in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted WebRTC session. (Chromium security severity: High)

8.8

CVE-2023-4077

  • EPSS 0.16%
  • Published 03.08.2023 01:15:12
  • Last modified 21.11.2024 08:34:21

Insufficient data validation in Extensions in Google Chrome prior to 115.0.5790.170 allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via a crafted Chrome Extension. (Chromium s...

8.8

CVE-2023-4078

  • EPSS 0.16%
  • Published 03.08.2023 01:15:12
  • Last modified 21.11.2024 08:34:21

Inappropriate implementation in Extensions in Google Chrome prior to 115.0.5790.170 allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via a crafted Chrome Extension. (Chromium s...

8.1

CVE-2023-4068

  • EPSS 2.68%
  • Published 03.08.2023 01:15:11
  • Last modified 21.11.2024 08:34:20

Type Confusion in V8 in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2023-4069

  • EPSS 3.98%
  • Published 03.08.2023 01:15:11
  • Last modified 21.11.2024 08:34:20

Type Confusion in V8 in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.1

CVE-2023-4070

  • EPSS 0.15%
  • Published 03.08.2023 01:15:11
  • Last modified 21.11.2024 08:34:20

Type Confusion in V8 in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High)