Google

Chrome

3758 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2015-6773

  • EPSS 1.72%
  • Veröffentlicht 06.12.2015 01:59:10
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The convolution implementation in Skia, as used in Google Chrome before 47.0.2526.73, does not properly constrain row lengths, which allows remote attackers to cause a denial of service (out-of-bounds memory access) or possibly have unspecified other...

7.5

CVE-2015-6772

  • EPSS 1.23%
  • Veröffentlicht 06.12.2015 01:59:09
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The DOM implementation in Blink, as used in Google Chrome before 47.0.2526.73, does not prevent javascript: URL navigation while a document is being detached, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code ...

7.5

CVE-2015-6771

  • EPSS 2.2%
  • Veröffentlicht 06.12.2015 01:59:08
  • Zuletzt bearbeitet 12.04.2025 10:46:40

js/array.js in Google V8, as used in Google Chrome before 47.0.2526.73, improperly implements certain map and filter operations for arrays, which allows remote attackers to cause a denial of service (out-of-bounds memory access) or possibly have unsp...

7.5

CVE-2015-6770

  • EPSS 0.96%
  • Veröffentlicht 06.12.2015 01:59:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The DOM implementation in Google Chrome before 47.0.2526.73 allows remote attackers to bypass the Same Origin Policy via unspecified vectors, a different vulnerability than CVE-2015-6768.

7.5

CVE-2015-6769

  • EPSS 1.23%
  • Veröffentlicht 06.12.2015 01:59:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The provisional-load commit implementation in WebKit/Source/bindings/core/v8/WindowProxy.cpp in Google Chrome before 47.0.2526.73 allows remote attackers to bypass the Same Origin Policy by leveraging a delay in window proxy clearing.

7.5

CVE-2015-6768

  • EPSS 0.96%
  • Veröffentlicht 06.12.2015 01:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The DOM implementation in Google Chrome before 47.0.2526.73 allows remote attackers to bypass the Same Origin Policy via unspecified vectors, a different vulnerability than CVE-2015-6770.

7.5

CVE-2015-6767

  • EPSS 1.58%
  • Veröffentlicht 06.12.2015 01:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Use-after-free vulnerability in content/browser/appcache/appcache_dispatcher_host.cc in the AppCache implementation in Google Chrome before 47.0.2526.73 allows remote attackers to cause a denial of service or possibly have unspecified other impact by...

7.5

CVE-2015-6766

  • EPSS 1.72%
  • Veröffentlicht 06.12.2015 01:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Use-after-free vulnerability in the AppCache implementation in Google Chrome before 47.0.2526.73 allows remote attackers with renderer access to cause a denial of service or possibly have unspecified other impact by leveraging incorrect AppCacheUpdat...

10

CVE-2015-6765

  • EPSS 4.71%
  • Veröffentlicht 06.12.2015 01:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Use-after-free vulnerability in content/browser/appcache/appcache_update_job.cc in Google Chrome before 47.0.2526.73 allows remote attackers to execute arbitrary code or cause a denial of service by leveraging the mishandling of AppCache update jobs.

9.8

CVE-2015-6764

  • EPSS 18.79%
  • Veröffentlicht 06.12.2015 01:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The BasicJsonStringifier::SerializeJSArray function in json-stringifier.h in the JSON stringifier in Google V8, as used in Google Chrome before 47.0.2526.73, improperly loads array elements, which allows remote attackers to cause a denial of service ...