Google

Chrome

3770 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.5

CVE-2025-13640

  • EPSS 0.02%
  • Veröffentlicht 02.12.2025 19:00:16
  • Zuletzt bearbeitet 04.12.2025 18:06:26

Inappropriate implementation in Passwords in Google Chrome prior to 143.0.7499.41 allowed a local attacker to bypass authentication via physical access to the device. (Chromium security severity: Low)

8.8

CVE-2025-13638

  • EPSS 0.12%
  • Veröffentlicht 02.12.2025 19:00:15
  • Zuletzt bearbeitet 04.12.2025 19:20:42

Use after free in Media Stream in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Low)

8.1

CVE-2025-13639

  • EPSS 0.04%
  • Veröffentlicht 02.12.2025 19:00:15
  • Zuletzt bearbeitet 08.12.2025 20:15:48

Inappropriate implementation in WebRTC in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: Low)

4.3

CVE-2025-13637

  • EPSS 0.02%
  • Veröffentlicht 02.12.2025 19:00:14
  • Zuletzt bearbeitet 04.12.2025 19:39:11

Inappropriate implementation in Downloads in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass download protections via a crafted HTML page. (Chromium security severity: Lo...

4.3

CVE-2025-13636

  • EPSS 0.08%
  • Veröffentlicht 02.12.2025 19:00:13
  • Zuletzt bearbeitet 04.12.2025 19:42:35

Inappropriate implementation in Split View in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted domain name. (Chromium security severity: Low)

4.4

CVE-2025-13634

  • EPSS 0.01%
  • Veröffentlicht 02.12.2025 19:00:12
  • Zuletzt bearbeitet 04.12.2025 19:53:52

Inappropriate implementation in Downloads in Google Chrome on Windows prior to 143.0.7499.41 allowed a local attacker to bypass mark of the web via a crafted HTML page. (Chromium security severity: Medium)

4.4

CVE-2025-13635

  • EPSS 0.01%
  • Veröffentlicht 02.12.2025 19:00:12
  • Zuletzt bearbeitet 04.12.2025 19:50:39

Inappropriate implementation in Downloads in Google Chrome prior to 143.0.7499.41 allowed a local attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

5.4

CVE-2025-13632

  • EPSS 0.02%
  • Veröffentlicht 02.12.2025 19:00:11
  • Zuletzt bearbeitet 04.12.2025 19:55:24

Inappropriate implementation in DevTools in Google Chrome prior to 143.0.7499.41 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension. (Chromium security seve...

8.8

CVE-2025-13631

  • EPSS 0.09%
  • Veröffentlicht 02.12.2025 19:00:10
  • Zuletzt bearbeitet 04.12.2025 19:59:37

Inappropriate implementation in Google Updater in Google Chrome on Mac prior to 143.0.7499.41 allowed a remote attacker to perform privilege escalation via a crafted file. (Chromium security severity: High)

8.8

CVE-2025-13630

  • EPSS 0.09%
  • Veröffentlicht 02.12.2025 19:00:09
  • Zuletzt bearbeitet 04.12.2025 19:59:59

Type Confusion in V8 in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)