Google

Chrome

3675 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2023-2938

  • EPSS 0.13%
  • Published 30.05.2023 22:15:10
  • Last modified 18.03.2025 19:15:41

Inappropriate implementation in Picture In Picture in Google Chrome prior to 114.0.5735.90 allowed a remote attacker who had compromised the renderer process to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security s...

7.8

CVE-2023-2939

  • EPSS 0.02%
  • Published 30.05.2023 22:15:10
  • Last modified 05.05.2025 16:15:38

Insufficient data validation in Installer in Google Chrome on Windows prior to 114.0.5735.90 allowed a local attacker to perform privilege escalation via crafted symbolic link. (Chromium security severity: Medium)

6.5

CVE-2023-2940

  • EPSS 0.02%
  • Published 30.05.2023 22:15:10
  • Last modified 12.03.2025 18:15:25

Inappropriate implementation in Downloads in Google Chrome prior to 114.0.5735.90 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted HTML page. (Chromium security severity: Mediu...

4.3

CVE-2023-2941

  • EPSS 0.08%
  • Published 30.05.2023 22:15:10
  • Last modified 11.03.2025 17:15:47

Inappropriate implementation in Extensions API in Google Chrome prior to 114.0.5735.90 allowed an attacker who convinced a user to install a malicious extension to spoof the contents of the UI via a crafted Chrome Extension. (Chromium security severi...

8.8

CVE-2023-2929

  • EPSS 0.54%
  • Published 30.05.2023 22:15:09
  • Last modified 05.05.2025 16:15:37

Out of bounds write in Swiftshader in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2023-2721

  • EPSS 0.23%
  • Published 16.05.2023 19:15:09
  • Last modified 05.05.2025 16:15:35

Use after free in Navigation in Google Chrome prior to 113.0.5672.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)

8.8

CVE-2023-2722

  • EPSS 0.31%
  • Published 16.05.2023 19:15:09
  • Last modified 05.05.2025 16:15:35

Use after free in Autofill UI in Google Chrome on Android prior to 113.0.5672.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2023-2723

  • EPSS 16.46%
  • Published 16.05.2023 19:15:09
  • Last modified 05.05.2025 16:15:36

Use after free in DevTools in Google Chrome prior to 113.0.5672.126 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2023-2724

  • EPSS 12.75%
  • Published 16.05.2023 19:15:09
  • Last modified 05.05.2025 16:15:36

Type confusion in V8 in Google Chrome prior to 113.0.5672.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2023-2725

  • EPSS 11.27%
  • Published 16.05.2023 19:15:09
  • Last modified 05.05.2025 16:15:36

Use after free in Guest View in Google Chrome prior to 113.0.5672.126 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)