Google

Chrome

3771 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2013-6645

Exploit
  • EPSS 1.41%
  • Veröffentlicht 16.01.2014 12:17:26
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the OnWindowRemovingFromRootWindow function in content/browser/web_contents/web_contents_view_aura.cc in Google Chrome before 32.0.1700.76 on Windows and before 32.0.1700.77 on Mac OS X and Linux allows user-assisted r...

7.5

CVE-2013-6646

Exploit
  • EPSS 1.76%
  • Veröffentlicht 16.01.2014 12:17:26
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the Web Workers implementation in Google Chrome before 32.0.1700.76 on Windows and before 32.0.1700.77 on Mac OS X and Linux allows remote attackers to cause a denial of service or possibly have unspecified other impac...

5

CVE-2012-2898

  • EPSS 0.14%
  • Veröffentlicht 05.01.2014 20:55:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Google Chrome before 21.0.1180.82 on iOS on iPad devices allows remote attackers to spoof the Omnibox URL via vectors involving SSL error messages, a related issue to CVE-2012-0674.

4.3

CVE-2012-2899

  • EPSS 0.12%
  • Veröffentlicht 05.01.2014 20:55:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Google Chrome before 21.0.1180.82 on iOS makes certain incorrect calls to WebView methods that trigger use of an applewebdata: URL, which allows remote attackers to bypass the Same Origin Policy and conduct Universal XSS (UXSS) attacks via vectors in...

7.5

CVE-2013-6639

  • EPSS 2.84%
  • Veröffentlicht 07.12.2013 00:55:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The DehoistArrayIndex function in hydrogen-dehoist.cc (aka hydrogen.cc) in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecifi...

7.5

CVE-2013-6640

  • EPSS 2.72%
  • Veröffentlicht 07.12.2013 00:55:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The DehoistArrayIndex function in hydrogen-dehoist.cc (aka hydrogen.cc) in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of service (out-of-bounds read) via JavaScript code that se...

6.8

CVE-2013-6634

  • EPSS 1.31%
  • Veröffentlicht 07.12.2013 00:55:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The OneClickSigninHelper::ShowInfoBarIfPossible function in browser/ui/sync/one_click_signin_helper.cc in Google Chrome before 31.0.1650.63 uses an incorrect URL during realm validation, which allows remote attackers to conduct session fixation attac...

6.8

CVE-2013-6635

  • EPSS 1.16%
  • Veröffentlicht 07.12.2013 00:55:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the editing implementation in Blink, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of service or possibly have unspecified other impact via JavaScript code that triggers remova...

4.3

CVE-2013-6636

  • EPSS 0.73%
  • Veröffentlicht 07.12.2013 00:55:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The FrameLoader::notifyIfInitialDocumentAccessed function in core/loader/FrameLoader.cpp in Blink, as used in Google Chrome before 31.0.1650.63, makes an incorrect check for an empty document during presentation of a modal dialog, which allows remote...

7.5

CVE-2013-6637

  • EPSS 0.53%
  • Veröffentlicht 07.12.2013 00:55:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple unspecified vulnerabilities in Google Chrome before 31.0.1650.63 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.