Google

Chrome

3771 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2015-8664

  • EPSS 8.84%
  • Veröffentlicht 24.12.2015 03:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor.cc in Google Chrome before 47.0.2526.106 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an RGBA pixel arra...

10

CVE-2015-6792

  • EPSS 19.7%
  • Veröffentlicht 24.12.2015 03:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The MIDI subsystem in Google Chrome before 47.0.2526.106 does not properly handle the sending of data, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors, related to midi_m...

10

CVE-2015-8548

  • EPSS 0.82%
  • Veröffentlicht 14.12.2015 11:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple unspecified vulnerabilities in Google V8 before 4.7.80.23, as used in Google Chrome before 47.0.2526.80, allow attackers to cause a denial of service or possibly have other impact via unknown vectors, a different issue than CVE-2015-8478.

4.3

CVE-2015-6790

  • EPSS 0.94%
  • Veröffentlicht 14.12.2015 11:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The WebPageSerializerImpl::openTagToString function in WebKit/Source/web/WebPageSerializerImpl.cpp in the page serializer in Google Chrome before 47.0.2526.80 does not properly use HTML entities, which might allow remote attackers to inject arbitrary...

10

CVE-2015-6791

  • EPSS 1.64%
  • Veröffentlicht 14.12.2015 11:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple unspecified vulnerabilities in Google Chrome before 47.0.2526.80 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.

9.3

CVE-2015-6789

  • EPSS 1.6%
  • Veröffentlicht 14.12.2015 11:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Race condition in the MutationObserver implementation in Blink, as used in Google Chrome before 47.0.2526.80, allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact by leveraging unanticipated ...

10

CVE-2015-6788

  • EPSS 4.25%
  • Veröffentlicht 14.12.2015 11:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The ObjectBackedNativeHandler class in extensions/renderer/object_backed_native_handler.cc in the extensions subsystem in Google Chrome before 47.0.2526.80 improperly implements handler functions, which allows remote attackers to cause a denial of se...

10

CVE-2015-8480

  • EPSS 0.79%
  • Veröffentlicht 06.12.2015 01:59:27
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The VideoFramePool::PoolImpl::CreateFrame function in media/base/video_frame_pool.cc in Google Chrome before 47.0.2526.73 does not initialize memory for a video-frame data structure, which might allow remote attackers to cause a denial of service (ou...

7.5

CVE-2015-8479

  • EPSS 0.15%
  • Veröffentlicht 06.12.2015 01:59:26
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Use-after-free vulnerability in the AudioOutputDevice::OnDeviceAuthorized function in media/audio/audio_output_device.cc in Google Chrome before 47.0.2526.73 allows attackers to cause a denial of service (heap memory corruption) or possibly have unsp...

7.5

CVE-2015-8478

  • EPSS 0.11%
  • Veröffentlicht 06.12.2015 01:59:25
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple unspecified vulnerabilities in Google V8 before 4.7.80.23, as used in Google Chrome before 47.0.2526.73, allow attackers to cause a denial of service or possibly have other impact via unknown vectors.