Google

Chrome

3675 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2022-1862

  • EPSS 0.21%
  • Published 27.07.2022 22:15:09
  • Last modified 21.11.2024 06:41:38

Inappropriate implementation in Extensions in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to bypass profile restrictions via a crafted HTML page.

8.8

CVE-2022-1863

  • EPSS 0.17%
  • Published 27.07.2022 22:15:09
  • Last modified 21.11.2024 06:41:38

Use after free in Tab Groups in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension and specific user interaction.

8.8

CVE-2022-1864

  • EPSS 0.17%
  • Published 27.07.2022 22:15:09
  • Last modified 21.11.2024 06:41:38

Use after free in WebApp Installs in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension and specific user interaction.

8.8

CVE-2022-1865

  • EPSS 0.17%
  • Published 27.07.2022 22:15:09
  • Last modified 21.11.2024 06:41:38

Use after free in Bookmarks in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension and specific user interaction.

8.8

CVE-2022-1866

  • EPSS 0.76%
  • Published 27.07.2022 22:15:09
  • Last modified 21.11.2024 06:41:38

Use after free in Tablet Mode in Google Chrome on Chrome OS prior to 102.0.5005.61 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via specific user interactions.

6.5

CVE-2022-1867

  • EPSS 0.38%
  • Published 27.07.2022 22:15:09
  • Last modified 21.11.2024 06:41:38

Insufficient validation of untrusted input in Data Transfer in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to bypass same origin policy via a crafted clipboard content.

6.5

CVE-2022-1868

  • EPSS 0.15%
  • Published 27.07.2022 22:15:09
  • Last modified 21.11.2024 06:41:38

Inappropriate implementation in Extensions API in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted HTML page.

6.5

CVE-2022-1869

  • EPSS 0.41%
  • Published 27.07.2022 22:15:09
  • Last modified 21.11.2024 06:41:39

Type Confusion in V8 in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

8.8

CVE-2022-1870

  • EPSS 0.15%
  • Published 27.07.2022 22:15:09
  • Last modified 21.11.2024 06:41:39

Use after free in App Service in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension.

4.3

CVE-2022-1871

  • EPSS 0.19%
  • Published 27.07.2022 22:15:09
  • Last modified 21.11.2024 06:41:39

Insufficient policy enforcement in File System API in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to bypass file system policy via a crafted HTML page.