Google

Chrome

3770 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2026-0628

Medienbericht
  • EPSS 0.02%
  • Veröffentlicht 06.01.2026 23:57:00
  • Zuletzt bearbeitet 12.01.2026 16:48:33

Insufficient policy enforcement in WebView tag in Google Chrome prior to 143.0.7499.192 allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via a crafted Chrome Extension. (Chromi...

8.8

CVE-2025-14766

  • EPSS 0.09%
  • Veröffentlicht 16.12.2025 22:54:47
  • Zuletzt bearbeitet 23.12.2025 17:06:24

Out of bounds read and write in V8 in Google Chrome prior to 143.0.7499.147 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2025-14765

  • EPSS 0.11%
  • Veröffentlicht 16.12.2025 22:54:46
  • Zuletzt bearbeitet 18.12.2025 19:53:39

Use after free in WebGPU in Google Chrome prior to 143.0.7499.147 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

6.1

CVE-2025-14372

  • EPSS 0.04%
  • Veröffentlicht 12.12.2025 19:20:42
  • Zuletzt bearbeitet 19.12.2025 15:34:14

Use after free in Password Manager in Google Chrome prior to 143.0.7499.110 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)

4.3

CVE-2025-14373

  • EPSS 0.03%
  • Veröffentlicht 12.12.2025 19:20:42
  • Zuletzt bearbeitet 19.12.2025 15:33:52

Inappropriate implementation in Toolbar in Google Chrome on Android prior to 143.0.7499.110 allowed a remote attacker to perform domain spoofing via a crafted HTML page. (Chromium security severity: Medium)

8.8

CVE-2025-14174

Warnung Medienbericht
  • EPSS 0.17%
  • Veröffentlicht 12.12.2025 19:20:41
  • Zuletzt bearbeitet 15.12.2025 15:16:08

Out of bounds memory access in ANGLE in Google Chrome on Mac prior to 143.0.7499.110 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

4.7

CVE-2025-13992

  • EPSS 0.03%
  • Veröffentlicht 03.12.2025 19:15:55
  • Zuletzt bearbeitet 05.12.2025 14:52:23

Side-channel information leakage in Navigation and Loading in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to bypass site isolation via a crafted HTML page. (Chromium security severity: Medium)

8.8

CVE-2025-13633

  • EPSS 0.12%
  • Veröffentlicht 02.12.2025 19:15:47
  • Zuletzt bearbeitet 04.12.2025 19:54:44

Use after free in Digital Credentials in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2025-13720

  • EPSS 0.09%
  • Veröffentlicht 02.12.2025 19:00:17
  • Zuletzt bearbeitet 04.12.2025 18:06:43

Bad cast in Loader in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

7.5

CVE-2025-13721

  • EPSS 0.08%
  • Veröffentlicht 02.12.2025 19:00:17
  • Zuletzt bearbeitet 04.12.2025 18:07:05

Race in v8 in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)