Google

Chrome

3758 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2013-6631

  • EPSS 1.74%
  • Veröffentlicht 19.11.2013 04:50:56
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the Channel::SendRTCPPacket function in voice_engine/channel.cc in libjingle in WebRTC, as used in Google Chrome before 31.0.1650.48 and other products, allows remote attackers to cause a denial of service (heap memory...

9.3

CVE-2013-6632

  • EPSS 13.22%
  • Veröffentlicht 18.11.2013 05:23:57
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Integer overflow in Google Chrome before 31.0.1650.57 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, as demonstrated during a Mobile Pwn2Own competition at PacSec 2013.

5.8

CVE-2013-6802

  • EPSS 0.38%
  • Veröffentlicht 18.11.2013 05:23:57
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Google Chrome before 31.0.1650.57 allows remote attackers to bypass intended sandbox restrictions by leveraging access to a renderer process, as demonstrated during a Mobile Pwn2Own competition at PacSec 2013, a different vulnerability than CVE-2013-...

7.5

CVE-2013-6621

Exploit
  • EPSS 1.48%
  • Veröffentlicht 13.11.2013 15:55:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in Google Chrome before 31.0.1650.48 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the x-webkit-speech attribute in a text INPUT element.

6.8

CVE-2013-6622

  • EPSS 1.61%
  • Veröffentlicht 13.11.2013 15:55:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the HTMLMediaElement::didMoveToNewDocument function in core/html/HTMLMediaElement.cpp in Blink, as used in Google Chrome before 31.0.1650.48, allows remote attackers to cause a denial of service or possibly have unspec...

4.3

CVE-2013-6623

  • EPSS 1.55%
  • Veröffentlicht 13.11.2013 15:55:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The SVG implementation in Blink, as used in Google Chrome before 31.0.1650.48, allows remote attackers to cause a denial of service (out-of-bounds read) by leveraging the use of tree order, rather than transitive dependency order, for layout.

7.5

CVE-2013-6624

  • EPSS 1.46%
  • Veröffentlicht 13.11.2013 15:55:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in Google Chrome before 31.0.1650.48 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving the string values of id attributes.

6.8

CVE-2013-6625

  • EPSS 1.51%
  • Veröffentlicht 13.11.2013 15:55:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in core/dom/ContainerNode.cpp in Blink, as used in Google Chrome before 31.0.1650.48, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper handling of DOM r...

4.3

CVE-2013-6626

  • EPSS 0.65%
  • Veröffentlicht 13.11.2013 15:55:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The WebContentsImpl::AttachInterstitialPage function in content/browser/web_contents/web_contents_impl.cc in Google Chrome before 31.0.1650.48 does not cancel JavaScript dialogs upon generating an interstitial warning, which allows remote attackers t...

5

CVE-2013-6627

  • EPSS 5.54%
  • Veröffentlicht 13.11.2013 15:55:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

net/http/http_stream_parser.cc in Google Chrome before 31.0.1650.48 does not properly process HTTP Informational (aka 1xx) status codes, which allows remote web servers to cause a denial of service (out-of-bounds read) via a crafted response.