Google

Chrome

3866 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2022-2161

  • EPSS 0.96%
  • Veröffentlicht 28.07.2022 01:15:16
  • Zuletzt bearbeitet 21.11.2024 07:00:27

Use after free in WebApp Provider in Google Chrome prior to 103.0.5060.53 allowed a remote attacker who convinced the user to engage in specific user interactions to potentially exploit heap corruption via specific UI interactions.

6.5

CVE-2022-1862

  • EPSS 0.2%
  • Veröffentlicht 27.07.2022 22:15:09
  • Zuletzt bearbeitet 21.11.2024 06:41:38

Inappropriate implementation in Extensions in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to bypass profile restrictions via a crafted HTML page.

8.8

CVE-2022-1863

  • EPSS 0.28%
  • Veröffentlicht 27.07.2022 22:15:09
  • Zuletzt bearbeitet 21.11.2024 06:41:38

Use after free in Tab Groups in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension and specific user interaction.

8.8

CVE-2022-1864

  • EPSS 0.28%
  • Veröffentlicht 27.07.2022 22:15:09
  • Zuletzt bearbeitet 21.11.2024 06:41:38

Use after free in WebApp Installs in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension and specific user interaction.

8.8

CVE-2022-1865

  • EPSS 0.28%
  • Veröffentlicht 27.07.2022 22:15:09
  • Zuletzt bearbeitet 21.11.2024 06:41:38

Use after free in Bookmarks in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension and specific user interaction.

8.8

CVE-2022-1866

  • EPSS 1.18%
  • Veröffentlicht 27.07.2022 22:15:09
  • Zuletzt bearbeitet 21.11.2024 06:41:38

Use after free in Tablet Mode in Google Chrome on Chrome OS prior to 102.0.5005.61 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via specific user interactions.

6.5

CVE-2022-1867

  • EPSS 0.35%
  • Veröffentlicht 27.07.2022 22:15:09
  • Zuletzt bearbeitet 21.11.2024 06:41:38

Insufficient validation of untrusted input in Data Transfer in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to bypass same origin policy via a crafted clipboard content.

6.5

CVE-2022-1868

  • EPSS 0.15%
  • Veröffentlicht 27.07.2022 22:15:09
  • Zuletzt bearbeitet 21.11.2024 06:41:38

Inappropriate implementation in Extensions API in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted HTML page.

6.5

CVE-2022-1869

  • EPSS 0.41%
  • Veröffentlicht 27.07.2022 22:15:09
  • Zuletzt bearbeitet 21.11.2024 06:41:39

Type Confusion in V8 in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

8.8

CVE-2022-1870

  • EPSS 0.28%
  • Veröffentlicht 27.07.2022 22:15:09
  • Zuletzt bearbeitet 21.11.2024 06:41:39

Use after free in App Service in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension.