Google

Chrome

3771 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2014-3178

  • EPSS 1.46%
  • Veröffentlicht 10.09.2014 10:55:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Use-after-free vulnerability in core/dom/Node.cpp in Blink, as used in Google Chrome before 37.0.2062.120, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper handling of render-tree i...

7.5

CVE-2014-3179

  • EPSS 0.51%
  • Veröffentlicht 10.09.2014 10:55:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple unspecified vulnerabilities in Google Chrome before 37.0.2062.120 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.

10

CVE-2014-3175

  • EPSS 1.88%
  • Veröffentlicht 27.08.2014 01:55:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple unspecified vulnerabilities in Google Chrome before 37.0.2062.94 allow attackers to cause a denial of service or possibly have other impact via unknown vectors, related to the load_truetype_glyph function in truetype/ttgload.c in FreeType an...

10

CVE-2014-3176

  • EPSS 23.38%
  • Veröffentlicht 27.08.2014 01:55:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Google Chrome before 37.0.2062.94 does not properly handle the interaction of extensions, IPC, the sync API, and Google V8, which allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-3177.

10

CVE-2014-3177

  • EPSS 7.33%
  • Veröffentlicht 27.08.2014 01:55:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Google Chrome before 37.0.2062.94 does not properly handle the interaction of extensions, IPC, the sync API, and Google V8, which allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-3176.

7.5

CVE-2014-3168

  • EPSS 2.05%
  • Veröffentlicht 27.08.2014 01:55:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Use-after-free vulnerability in the SVG implementation in Blink, as used in Google Chrome before 37.0.2062.94, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper caching associated wi...

7.5

CVE-2014-3169

  • EPSS 3.25%
  • Veröffentlicht 27.08.2014 01:55:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Use-after-free vulnerability in core/dom/ContainerNode.cpp in the DOM implementation in Blink, as used in Google Chrome before 37.0.2062.94, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging ...

6.4

CVE-2014-3170

  • EPSS 0.68%
  • Veröffentlicht 27.08.2014 01:55:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

extensions/common/url_pattern.cc in Google Chrome before 37.0.2062.94 does not prevent use of a '\0' character in a host name, which allows remote attackers to spoof the extension permission dialog by relying on truncation after this character.

7.5

CVE-2014-3171

  • EPSS 2.35%
  • Veröffentlicht 27.08.2014 01:55:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Use-after-free vulnerability in the V8 bindings in Blink, as used in Google Chrome before 37.0.2062.94, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper use of HashMap add operation...

6.4

CVE-2014-3172

  • EPSS 0.48%
  • Veröffentlicht 27.08.2014 01:55:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Debugger extension API in browser/extensions/api/debugger/debugger_api.cc in Google Chrome before 37.0.2062.94 does not validate a tab's URL before an attach operation, which allows remote attackers to bypass intended access limitations via an ex...