Google

Chrome

3858 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2024-7000

  • EPSS 0.52%
  • Veröffentlicht 06.08.2024 16:15:50
  • Zuletzt bearbeitet 07.08.2024 22:08:32

Use after free in CSS in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

4.3

CVE-2024-7001

  • EPSS 0.1%
  • Veröffentlicht 06.08.2024 16:15:50
  • Zuletzt bearbeitet 19.03.2025 16:15:29

Inappropriate implementation in HTML in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

4.3

CVE-2024-7003

  • EPSS 0.12%
  • Veröffentlicht 06.08.2024 16:15:50
  • Zuletzt bearbeitet 07.08.2024 19:52:18

Inappropriate implementation in FedCM in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

4.3

CVE-2024-7004

  • EPSS 0.05%
  • Veröffentlicht 06.08.2024 16:15:50
  • Zuletzt bearbeitet 29.10.2024 20:35:41

Insufficient validation of untrusted input in Safe Browsing in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass discretionary access control via a malicious file. (Chromiu...

4.3

CVE-2024-7005

  • EPSS 0.08%
  • Veröffentlicht 06.08.2024 16:15:50
  • Zuletzt bearbeitet 07.08.2024 19:56:48

Insufficient validation of untrusted input in Safe Browsing in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass discretionary access control via a malicious file. (Chromiu...

8.8

CVE-2024-6988

  • EPSS 0.56%
  • Veröffentlicht 06.08.2024 16:15:49
  • Zuletzt bearbeitet 07.08.2024 20:51:56

Use after free in Downloads in Google Chrome on iOS prior to 127.0.6533.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2024-6989

  • EPSS 0.52%
  • Veröffentlicht 06.08.2024 16:15:49
  • Zuletzt bearbeitet 07.08.2024 22:10:20

Use after free in Loader in Google Chrome prior to 127.0.6533.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2024-6990

  • EPSS 0.34%
  • Veröffentlicht 01.08.2024 18:15:26
  • Zuletzt bearbeitet 16.08.2024 15:21:14

Uninitialized Use in Dawn in Google Chrome on Android prior to 127.0.6533.88 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Critical)

8.8

CVE-2024-7255

  • EPSS 0.62%
  • Veröffentlicht 01.08.2024 18:15:26
  • Zuletzt bearbeitet 29.10.2024 20:35:42

Out of bounds read in WebTransport in Google Chrome prior to 127.0.6533.88 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2024-7256

Exploit
  • EPSS 0.46%
  • Veröffentlicht 01.08.2024 18:15:26
  • Zuletzt bearbeitet 02.01.2025 17:41:48

Insufficient data validation in Dawn in Google Chrome on Android prior to 127.0.6533.88 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)