Google

Chrome

4157 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.6

CVE-2022-3312

  • EPSS 0.03%
  • Veröffentlicht 01.11.2022 20:15:21
  • Zuletzt bearbeitet 06.05.2025 16:15:24

Insufficient validation of untrusted input in VPN in Google Chrome on ChromeOS prior to 106.0.5249.62 allowed a local attacker to bypass managed device restrictions via physical access to the device. (Chromium security severity: Medium)

6.5

CVE-2022-3313

  • EPSS 0.12%
  • Veröffentlicht 01.11.2022 20:15:21
  • Zuletzt bearbeitet 06.05.2025 16:15:24

Incorrect security UI in full screen in Google Chrome prior to 106.0.5249.62 allowed a remote attacker to spoof security UI via a crafted HTML page. (Chromium security severity: Medium)

6.5

CVE-2022-3314

  • EPSS 0.2%
  • Veröffentlicht 01.11.2022 20:15:21
  • Zuletzt bearbeitet 06.05.2025 16:15:25

Use after free in logging in Google Chrome prior to 106.0.5249.62 allowed a remote attacker who had compromised a WebUI process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)

8.8

CVE-2022-3315

  • EPSS 0.56%
  • Veröffentlicht 01.11.2022 20:15:21
  • Zuletzt bearbeitet 21.11.2024 07:19:16

Type confusion in Blink in Google Chrome prior to 106.0.5249.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Low)

4.3

CVE-2022-3316

Exploit
  • EPSS 0.25%
  • Veröffentlicht 01.11.2022 20:15:21
  • Zuletzt bearbeitet 21.11.2024 07:19:16

Insufficient validation of untrusted input in Safe Browsing in Google Chrome prior to 106.0.5249.62 allowed a remote attacker to bypass security feature via a crafted HTML page. (Chromium security severity: Low)

4.3

CVE-2022-3317

Exploit
  • EPSS 0.28%
  • Veröffentlicht 01.11.2022 20:15:21
  • Zuletzt bearbeitet 21.11.2024 07:19:17

Insufficient validation of untrusted input in Intents in Google Chrome on Android prior to 106.0.5249.62 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Low)

4.3

CVE-2022-3318

Exploit
  • EPSS 0.28%
  • Veröffentlicht 01.11.2022 20:15:21
  • Zuletzt bearbeitet 21.11.2024 07:19:17

Use after free in ChromeOS Notifications in Google Chrome on ChromeOS prior to 106.0.5249.62 allowed a remote attacker who convinced a user to reboot Chrome OS to potentially exploit heap corruption via UI interaction. (Chromium security severity: Lo...

4.3

CVE-2022-3443

Exploit
  • EPSS 0.38%
  • Veröffentlicht 01.11.2022 20:15:21
  • Zuletzt bearbeitet 21.11.2024 07:19:31

Insufficient data validation in File System API in Google Chrome prior to 106.0.5249.62 allowed a remote attacker to bypass File System restrictions via a crafted HTML page. (Chromium security severity: Low)

8.8

CVE-2022-3305

  • EPSS 1.1%
  • Veröffentlicht 01.11.2022 20:15:20
  • Zuletzt bearbeitet 06.05.2025 17:15:51

Use after free in survey in Google Chrome on ChromeOS prior to 106.0.5249.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2022-3306

  • EPSS 0.67%
  • Veröffentlicht 01.11.2022 20:15:20
  • Zuletzt bearbeitet 06.05.2025 17:15:51

Use after free in survey in Google Chrome on ChromeOS prior to 106.0.5249.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)