Google

Chrome

3858 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2025-14765

  • EPSS 0.13%
  • Veröffentlicht 16.12.2025 22:54:46
  • Zuletzt bearbeitet 18.12.2025 19:53:39

Use after free in WebGPU in Google Chrome prior to 143.0.7499.147 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

6.1

CVE-2025-14372

  • EPSS 0.05%
  • Veröffentlicht 12.12.2025 19:20:42
  • Zuletzt bearbeitet 19.12.2025 15:34:14

Use after free in Password Manager in Google Chrome prior to 143.0.7499.110 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)

4.3

CVE-2025-14373

  • EPSS 0.04%
  • Veröffentlicht 12.12.2025 19:20:42
  • Zuletzt bearbeitet 19.12.2025 15:33:52

Inappropriate implementation in Toolbar in Google Chrome on Android prior to 143.0.7499.110 allowed a remote attacker to perform domain spoofing via a crafted HTML page. (Chromium security severity: Medium)

8.8

CVE-2025-14174

Warnung Medienbericht
  • EPSS 0.87%
  • Veröffentlicht 12.12.2025 19:20:41
  • Zuletzt bearbeitet 15.12.2025 15:16:08

Out of bounds memory access in ANGLE in Google Chrome on Mac prior to 143.0.7499.110 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

4.7

CVE-2025-13992

  • EPSS 0.03%
  • Veröffentlicht 03.12.2025 19:15:55
  • Zuletzt bearbeitet 05.12.2025 14:52:23

Side-channel information leakage in Navigation and Loading in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to bypass site isolation via a crafted HTML page. (Chromium security severity: Medium)

8.8

CVE-2025-13633

  • EPSS 0.14%
  • Veröffentlicht 02.12.2025 19:15:47
  • Zuletzt bearbeitet 04.12.2025 19:54:44

Use after free in Digital Credentials in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2025-13720

  • EPSS 0.1%
  • Veröffentlicht 02.12.2025 19:00:17
  • Zuletzt bearbeitet 04.12.2025 18:06:43

Bad cast in Loader in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

7.5

CVE-2025-13721

  • EPSS 0.08%
  • Veröffentlicht 02.12.2025 19:00:17
  • Zuletzt bearbeitet 04.12.2025 18:07:05

Race in v8 in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

3.5

CVE-2025-13640

  • EPSS 0.02%
  • Veröffentlicht 02.12.2025 19:00:16
  • Zuletzt bearbeitet 04.12.2025 18:06:26

Inappropriate implementation in Passwords in Google Chrome prior to 143.0.7499.41 allowed a local attacker to bypass authentication via physical access to the device. (Chromium security severity: Low)

8.8

CVE-2025-13638

  • EPSS 0.14%
  • Veröffentlicht 02.12.2025 19:00:15
  • Zuletzt bearbeitet 04.12.2025 19:20:42

Use after free in Media Stream in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Low)