Google

Chrome

3675 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2025-3619

  • EPSS 0.03%
  • Published 16.04.2025 20:57:44
  • Last modified 15.07.2025 18:20:55

Heap buffer overflow in Codecs in Google Chrome on Windows prior to 135.0.7049.95 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)

6.7

CVE-2025-1122

Exploit
  • EPSS 0.01%
  • Published 15.04.2025 19:51:23
  • Last modified 06.10.2025 16:56:59

Out-Of-Bounds Write in TPM2 Reference Library in Google ChromeOS 15753.50.0 stable on Cr50 Boards allows an attacker with root access to gain persistence and Bypass operating system verification via exploiting the NV_Read functionality during the C...

6.7

CVE-2025-1292

Exploit
  • EPSS 0.01%
  • Published 15.04.2025 19:46:26
  • Last modified 06.10.2025 16:55:26

Out-Of-Bounds Write in TPM2 Reference Library in Google ChromeOS 122.0.6261.132 stable on Cr50 Boards allows an attacker with root access to gain persistence and bypass operating system verification via exploiting the NV_Read functionality during t...

8.6

CVE-2025-3067

  • EPSS 0.05%
  • Published 02.04.2025 01:15:38
  • Last modified 08.09.2025 00:15:30

Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform privilege escalation via a crafted app. (Chromium security seve...

8.8

CVE-2025-3068

  • EPSS 0.06%
  • Published 02.04.2025 01:15:38
  • Last modified 07.04.2025 13:30:02

Inappropriate implementation in Intents in Google Chrome on Android prior to 135.0.7049.52 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: Medium)

8.8

CVE-2025-3069

  • EPSS 0.06%
  • Published 02.04.2025 01:15:38
  • Last modified 07.04.2025 13:28:15

Inappropriate implementation in Extensions in Google Chrome prior to 135.0.7049.52 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: Medium)

6.5

CVE-2025-3070

  • EPSS 0.05%
  • Published 02.04.2025 01:15:38
  • Last modified 07.04.2025 13:28:06

Insufficient validation of untrusted input in Extensions in Google Chrome prior to 135.0.7049.52 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: Medium)

5.4

CVE-2025-3071

  • EPSS 0.01%
  • Published 02.04.2025 01:15:38
  • Last modified 21.04.2025 20:48:25

Inappropriate implementation in Navigations in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass same origin policy via a crafted HTML page. (Chromium security severity: Lo...

5.4

CVE-2025-3072

  • EPSS 0.04%
  • Published 02.04.2025 01:15:38
  • Last modified 21.04.2025 20:48:41

Inappropriate implementation in Custom Tabs in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

5.4

CVE-2025-3073

  • EPSS 0.04%
  • Published 02.04.2025 01:15:38
  • Last modified 21.04.2025 20:49:20

Inappropriate implementation in Autofill in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)