Google

Chrome

3675 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2012-4908

  • EPSS 3.62%
  • Veröffentlicht 13.09.2012 20:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Google Chrome before 18.0.1025308 on Android allows remote attackers to bypass the Same Origin Policy and obtain access to local files via vectors involving a symlink.

4.3

CVE-2012-4909

  • EPSS 4.64%
  • Veröffentlicht 13.09.2012 20:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Google Chrome before 18.0.1025308 on Android allows remote attackers to obtain cookie information via a crafted application.

7.5

CVE-2012-2869

  • EPSS 1.38%
  • Veröffentlicht 31.08.2012 19:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Google Chrome before 21.0.1180.89 does not properly load URLs, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger a "stale buffer."

4.3

CVE-2012-2870

  • EPSS 1.18%
  • Veröffentlicht 31.08.2012 19:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

libxslt 1.1.26 and earlier, as used in Google Chrome before 21.0.1180.89, does not properly manage memory, which might allow remote attackers to cause a denial of service (application crash) via a crafted XSLT expression that is not properly identifi...

6.8

CVE-2012-2871

  • EPSS 1.05%
  • Veröffentlicht 31.08.2012 19:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

libxml2 2.9.0-rc1 and earlier, as used in Google Chrome before 21.0.1180.89, does not properly support a cast of an unspecified variable during handling of XSL transforms, which allows remote attackers to cause a denial of service or possibly have un...

4.3

CVE-2012-2872

  • EPSS 0.36%
  • Veröffentlicht 31.08.2012 19:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in an SSL interstitial page in Google Chrome before 21.0.1180.89 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3

CVE-2012-2865

  • EPSS 0.97%
  • Veröffentlicht 31.08.2012 19:55:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Google Chrome before 21.0.1180.89 does not properly perform line breaking, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted document.

7.5

CVE-2012-2866

  • EPSS 1.62%
  • Veröffentlicht 31.08.2012 19:55:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Google Chrome before 21.0.1180.89 does not properly perform a cast of an unspecified variable during handling of run-in elements, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted document.

5

CVE-2012-2867

  • EPSS 1.38%
  • Veröffentlicht 31.08.2012 19:55:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The SPDY implementation in Google Chrome before 21.0.1180.89 allows remote attackers to cause a denial of service (application crash) via unspecified vectors.

6.8

CVE-2012-2868

  • EPSS 0.92%
  • Veröffentlicht 31.08.2012 19:55:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Race condition in Google Chrome before 21.0.1180.89 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving improper interaction between worker processes and an XMLHttpRequest (aka XHR) obj...