Google

Chrome

3858 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2024-7968

  • EPSS 1.3%
  • Veröffentlicht 21.08.2024 21:15:09
  • Zuletzt bearbeitet 27.08.2024 13:35:04

Use after free in Autofill in Google Chrome prior to 128.0.6613.84 allowed a remote attacker who had convinced the user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity:...

8.8

CVE-2024-7969

  • EPSS 0.17%
  • Veröffentlicht 21.08.2024 21:15:09
  • Zuletzt bearbeitet 28.08.2024 23:15:05

Type Confusion in V8 in Google Chrome prior to 128.0.6613.113 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

9.6

CVE-2024-7971

Warnung Exploit
  • EPSS 1.01%
  • Veröffentlicht 21.08.2024 21:15:09
  • Zuletzt bearbeitet 24.10.2025 14:06:55

Type confusion in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2024-7972

  • EPSS 0.63%
  • Veröffentlicht 21.08.2024 21:15:09
  • Zuletzt bearbeitet 26.08.2024 15:11:35

Inappropriate implementation in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Medium)

8.8

CVE-2024-7973

  • EPSS 0.39%
  • Veröffentlicht 21.08.2024 21:15:09
  • Zuletzt bearbeitet 24.10.2024 20:35:14

Heap buffer overflow in PDFium in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to perform an out of bounds memory read via a crafted PDF file. (Chromium security severity: Medium)

8.8

CVE-2024-7974

  • EPSS 0.69%
  • Veröffentlicht 21.08.2024 21:15:09
  • Zuletzt bearbeitet 19.03.2025 17:15:41

Insufficient data validation in V8 API in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: Medium)

4.3

CVE-2024-7975

  • EPSS 0.24%
  • Veröffentlicht 21.08.2024 21:15:09
  • Zuletzt bearbeitet 25.03.2025 17:16:13

Inappropriate implementation in Permissions in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

4.3

CVE-2024-7976

  • EPSS 0.24%
  • Veröffentlicht 21.08.2024 21:15:09
  • Zuletzt bearbeitet 24.03.2025 18:15:21

Inappropriate implementation in FedCM in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

7.8

CVE-2024-7977

  • EPSS 0.03%
  • Veröffentlicht 21.08.2024 21:15:09
  • Zuletzt bearbeitet 22.08.2024 20:35:28

Insufficient data validation in Installer in Google Chrome on Windows prior to 128.0.6613.84 allowed a local attacker to perform privilege escalation via a malicious file. (Chromium security severity: Medium)

4.3

CVE-2024-7978

  • EPSS 0.31%
  • Veröffentlicht 21.08.2024 21:15:09
  • Zuletzt bearbeitet 29.10.2024 20:35:44

Insufficient policy enforcement in Data Transfer in Google Chrome prior to 128.0.6613.84 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via a crafted HTML page. (Chromium security severity: ...