CVE-2015-6780
- EPSS 1.13%
- Veröffentlicht 06.12.2015 01:59:17
- Zuletzt bearbeitet 06.05.2026 22:30:45
Use-after-free vulnerability in the Infobars implementation in Google Chrome before 47.0.2526.73 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted web site, related to browser/ui/views/websit...
CVE-2015-6779
- EPSS 2.03%
- Veröffentlicht 06.12.2015 01:59:16
- Zuletzt bearbeitet 06.05.2026 22:30:45
PDFium, as used in Google Chrome before 47.0.2526.73, does not properly restrict use of chrome: URLs, which allows remote attackers to bypass intended scheme restrictions via a crafted PDF document, as demonstrated by a document with a link to a chro...
CVE-2015-6778
- EPSS 1.68%
- Veröffentlicht 06.12.2015 01:59:15
- Zuletzt bearbeitet 06.05.2026 22:30:45
The CJBig2_SymbolDict class in fxcodec/jbig2/JBig2_SymbolDict.cpp in PDFium, as used in Google Chrome before 47.0.2526.73, allows remote attackers to cause a denial of service (out-of-bounds memory access) or possibly have unspecified other impact vi...
CVE-2015-6777
- EPSS 1.59%
- Veröffentlicht 06.12.2015 01:59:14
- Zuletzt bearbeitet 06.05.2026 22:30:45
Use-after-free vulnerability in the ContainerNode::notifyNodeInsertedInternal function in WebKit/Source/core/dom/ContainerNode.cpp in the DOM implementation in Google Chrome before 47.0.2526.73 allows remote attackers to cause a denial of service or ...
CVE-2015-6776
- EPSS 1.46%
- Veröffentlicht 06.12.2015 01:59:13
- Zuletzt bearbeitet 06.05.2026 22:30:45
The opj_dwt_decode_1* functions in dwt.c in OpenJPEG, as used in PDFium in Google Chrome before 47.0.2526.73, allow remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted JPEG ...
CVE-2015-6775
- EPSS 2.12%
- Veröffentlicht 06.12.2015 01:59:12
- Zuletzt bearbeitet 06.05.2026 22:30:45
fpdfsdk/src/jsapi/fxjs_v8.cpp in PDFium, as used in Google Chrome before 47.0.2526.73, does not use signatures, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that leverage "type confu...
CVE-2015-6774
- EPSS 1.54%
- Veröffentlicht 06.12.2015 01:59:11
- Zuletzt bearbeitet 06.05.2026 22:30:45
Use-after-free vulnerability in the GetLoadTimes function in renderer/loadtimes_extension_bindings.cc in the Extensions implementation in Google Chrome before 47.0.2526.73 allows remote attackers to cause a denial of service or possibly have unspecif...
CVE-2015-6773
- EPSS 1.73%
- Veröffentlicht 06.12.2015 01:59:10
- Zuletzt bearbeitet 06.05.2026 22:30:45
The convolution implementation in Skia, as used in Google Chrome before 47.0.2526.73, does not properly constrain row lengths, which allows remote attackers to cause a denial of service (out-of-bounds memory access) or possibly have unspecified other...
CVE-2015-6772
- EPSS 1.64%
- Veröffentlicht 06.12.2015 01:59:09
- Zuletzt bearbeitet 06.05.2026 22:30:45
The DOM implementation in Blink, as used in Google Chrome before 47.0.2526.73, does not prevent javascript: URL navigation while a document is being detached, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code ...
CVE-2015-6771
- EPSS 2.13%
- Veröffentlicht 06.12.2015 01:59:08
- Zuletzt bearbeitet 06.05.2026 22:30:45
js/array.js in Google V8, as used in Google Chrome before 47.0.2526.73, improperly implements certain map and filter operations for arrays, which allows remote attackers to cause a denial of service (out-of-bounds memory access) or possibly have unsp...