Google

Chrome

3770 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2024-11112

  • EPSS 0.42%
  • Veröffentlicht 12.11.2024 21:15:11
  • Zuletzt bearbeitet 02.01.2025 18:02:40

Use after free in Media in Google Chrome on Windows prior to 131.0.6778.69 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

8.8

CVE-2024-11113

  • EPSS 0.42%
  • Veröffentlicht 12.11.2024 21:15:11
  • Zuletzt bearbeitet 02.01.2025 18:02:23

Use after free in Accessibility in Google Chrome prior to 131.0.6778.69 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

8.3

CVE-2024-11114

  • EPSS 0.4%
  • Veröffentlicht 12.11.2024 21:15:11
  • Zuletzt bearbeitet 02.01.2025 18:02:03

Inappropriate implementation in Views in Google Chrome on Windows prior to 131.0.6778.69 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: ...

8.8

CVE-2024-11115

  • EPSS 0.38%
  • Veröffentlicht 12.11.2024 21:15:11
  • Zuletzt bearbeitet 02.01.2025 18:00:46

Insufficient policy enforcement in Navigation in Google Chrome on iOS prior to 131.0.6778.69 allowed a remote attacker to perform privilege escalation via a series of UI gestures. (Chromium security severity: Medium)

4.3

CVE-2024-11116

  • EPSS 0.09%
  • Veröffentlicht 12.11.2024 21:15:11
  • Zuletzt bearbeitet 02.01.2025 17:58:57

Inappropriate implementation in Blink in Google Chrome prior to 131.0.6778.69 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

4.3

CVE-2024-11117

  • EPSS 0.03%
  • Veröffentlicht 12.11.2024 21:15:11
  • Zuletzt bearbeitet 02.01.2025 17:57:23

Inappropriate implementation in FileSystem in Google Chrome prior to 131.0.6778.69 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. (Chromium security severity: Low)

6.5

CVE-2024-11110

  • EPSS 0.05%
  • Veröffentlicht 12.11.2024 21:15:10
  • Zuletzt bearbeitet 02.01.2025 18:07:22

Inappropriate implementation in Extensions in Google Chrome prior to 131.0.6778.69 allowed a remote attacker to bypass site isolation via a crafted Chrome Extension. (Chromium security severity: High)

8.8

CVE-2024-10827

  • EPSS 0.91%
  • Veröffentlicht 06.11.2024 17:15:14
  • Zuletzt bearbeitet 02.01.2025 18:07:41

Use after free in Serial in Google Chrome prior to 130.0.6723.116 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2024-10826

  • EPSS 0.35%
  • Veröffentlicht 06.11.2024 17:15:13
  • Zuletzt bearbeitet 02.01.2025 18:07:57

Use after free in Family Experiences in Google Chrome on Android prior to 130.0.6723.116 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2024-10487

  • EPSS 0.3%
  • Veröffentlicht 29.10.2024 22:15:03
  • Zuletzt bearbeitet 02.01.2025 18:08:38

Out of bounds write in Dawn in Google Chrome prior to 130.0.6723.92 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Critical)