Google

Chrome

3758 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2017-5093

  • EPSS 1.16%
  • Veröffentlicht 27.10.2017 05:29:01
  • Zuletzt bearbeitet 20.04.2025 01:37:25

Inappropriate implementation in modal dialog handling in Blink in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to prevent a full screen warning from being displayed via a crafted HTML page.

6.5

CVE-2017-5094

  • EPSS 0.99%
  • Veröffentlicht 27.10.2017 05:29:01
  • Zuletzt bearbeitet 20.04.2025 01:37:25

Type confusion in extensions JavaScript bindings in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to potentially maliciously modify objects via a crafted HTML page.

8.8

CVE-2017-5095

  • EPSS 1.59%
  • Veröffentlicht 27.10.2017 05:29:01
  • Zuletzt bearbeitet 20.04.2025 01:37:25

Stack overflow in PDFium in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to potentially exploit stack corruption via a crafted PDF file.

4.3

CVE-2017-5096

  • EPSS 0.4%
  • Veröffentlicht 27.10.2017 05:29:01
  • Zuletzt bearbeitet 20.04.2025 01:37:25

Insufficient policy enforcement during navigation between different schemes in Google Chrome prior to 60.0.3112.78 for Android allowed a remote attacker to perform cross origin content download via a crafted HTML page, related to intents.

8.8

CVE-2017-5097

  • EPSS 1.1%
  • Veröffentlicht 27.10.2017 05:29:01
  • Zuletzt bearbeitet 20.04.2025 01:37:25

Insufficient validation of untrusted input in Skia in Google Chrome prior to 60.0.3112.78 for Linux allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.

8.8

CVE-2017-5098

  • EPSS 3.37%
  • Veröffentlicht 27.10.2017 05:29:01
  • Zuletzt bearbeitet 20.04.2025 01:37:25

A use after free in V8 in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.

8.8

CVE-2017-5099

  • EPSS 1.27%
  • Veröffentlicht 27.10.2017 05:29:01
  • Zuletzt bearbeitet 20.04.2025 01:37:25

Insufficient validation of untrusted input in PPAPI Plugins in Google Chrome prior to 60.0.3112.78 for Mac allowed a remote attacker to potentially gain privilege elevation via a crafted HTML page.

8.8

CVE-2017-5100

  • EPSS 1.1%
  • Veröffentlicht 27.10.2017 05:29:01
  • Zuletzt bearbeitet 20.04.2025 01:37:25

A use after free in Apps in Google Chrome prior to 60.0.3112.78 for Windows allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.

6.5

CVE-2017-5101

  • EPSS 1.16%
  • Veröffentlicht 27.10.2017 05:29:01
  • Zuletzt bearbeitet 20.04.2025 01:37:25

Inappropriate implementation in Omnibox in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to spoof the contents of the Omnibox via a crafted HTML page.

4.3

CVE-2017-5102

  • EPSS 1.16%
  • Veröffentlicht 27.10.2017 05:29:01
  • Zuletzt bearbeitet 20.04.2025 01:37:25

Use of an uninitialized value in Skia in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.