Google

Chrome

3858 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2010-3729

Exploit
  • EPSS 4.26%
  • Veröffentlicht 05.10.2010 18:00:32
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The SPDY protocol implementation in Google Chrome before 6.0.472.62 does not properly manage buffers, which might allow remote attackers to execute arbitrary code via unspecified vectors.

8.8

CVE-2010-3730

Exploit
  • EPSS 0.51%
  • Veröffentlicht 05.10.2010 18:00:32
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Google Chrome before 6.0.472.62 does not properly use information about the origin of a document to manage properties, which allows remote attackers to have an unspecified impact via a crafted web site, related to a "property pollution" issue.

8.8

CVE-2010-1822

Exploit
  • EPSS 4.06%
  • Veröffentlicht 04.10.2010 21:00:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3 and Google Chrome before 6.0.472.62, does not properly perform a cast of an unspecified variable, which allows remote attackers to execute arbitrary code or cause a denial of service...

6.8

CVE-2010-1767

  • EPSS 0.63%
  • Veröffentlicht 24.09.2010 19:00:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site request forgery (CSRF) vulnerability in loader/DocumentThreadableLoader.cpp in WebCore in WebKit before r57041, as used in Google Chrome before 4.1.249.1059, allows remote attackers to hijack the authentication of unspecified victims via a...

8.8

CVE-2010-1772

Exploit
  • EPSS 1.99%
  • Veröffentlicht 24.09.2010 19:00:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in page/Geolocation.cpp in WebCore in WebKit before r59859, as used in Google Chrome before 5.0.375.70, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted web ...

8.8

CVE-2010-1773

  • EPSS 1.78%
  • Veröffentlicht 24.09.2010 19:00:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Off-by-one error in the toAlphabetic function in rendering/RenderListMarker.cpp in WebCore in WebKit before r59950, as used in Google Chrome before 5.0.375.70, allows remote attackers to obtain sensitive information, cause a denial of service (memory...

9.3

CVE-2010-1823

  • EPSS 1.9%
  • Veröffentlicht 24.09.2010 19:00:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in WebKit before r65958, as used in Google Chrome before 6.0.472.59, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger use of document APIs such as doc...

9.3

CVE-2010-1824

Exploit
  • EPSS 14.66%
  • Veröffentlicht 24.09.2010 19:00:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in WebKit, as used in Apple iTunes before 10.2 on Windows, Apple Safari, and Google Chrome before 6.0.472.59, allows remote attackers to execute arbitrary code or cause a denial of service via vectors related to SVG style...

9.3

CVE-2010-1825

Exploit
  • EPSS 1.06%
  • Veröffentlicht 24.09.2010 19:00:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in WebKit, as used in Google Chrome before 6.0.472.59, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to nested SVG elements.

5

CVE-2010-3411

Exploit
  • EPSS 0.16%
  • Veröffentlicht 16.09.2010 21:00:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Google Chrome before 6.0.472.59 on Linux does not properly handle cursors, which might allow attackers to cause a denial of service (assertion failure) via unspecified vectors.