Google

Chrome

5395 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 1.06%
  • Veröffentlicht 19.11.2014 11:59:06
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Google Chrome before 39.0.2171.65 on Android does not prevent navigation to a URL in cases where an intent for the URL lacks CATEGORY_BROWSABLE, which allows remote attackers to bypass intended access restrictions via a crafted web site.

  • EPSS 1.63%
  • Veröffentlicht 19.11.2014 11:59:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Buffer overflow in Skia, as used in Google Chrome before 39.0.2171.65, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

  • EPSS 1.47%
  • Veröffentlicht 19.11.2014 11:59:04
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Buffer overflow in OpenJPEG before r2911 in PDFium, as used in Google Chrome before 39.0.2171.65, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted JPEG image.

  • EPSS 1.24%
  • Veröffentlicht 19.11.2014 11:59:03
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Use-after-free vulnerability in PDFium, as used in Google Chrome before 39.0.2171.65, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted PDF document.

  • EPSS 1.35%
  • Veröffentlicht 19.11.2014 11:59:02
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Integer overflow in the opj_t2_read_packet_data function in fxcodec/fx_libopenjpeg/libopenjpeg20/t2.c in OpenJPEG in PDFium, as used in Google Chrome before 39.0.2171.65, allows remote attackers to cause a denial of service or possibly have unspecifi...

  • EPSS 1.35%
  • Veröffentlicht 19.11.2014 11:59:01
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Use-after-free vulnerability in the CPDF_Parser::IsLinearizedFile function in fpdfapi/fpdf_parser/fpdf_parser_parser.cpp in PDFium, as used in Google Chrome before 39.0.2171.65, allows remote attackers to cause a denial of service or possibly have un...

  • EPSS 1.25%
  • Veröffentlicht 19.11.2014 11:59:00
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Google Chrome before 38.0.2125.101 allows remote attackers to spoof the address bar by placing a blob: substring at the beginning of the URL, followed by the original URI scheme and a long username string.

  • EPSS 0.77%
  • Veröffentlicht 10.10.2014 01:55:08
  • Zuletzt bearbeitet 06.05.2026 22:30:45

core/rendering/compositing/RenderLayerCompositor.cpp in Blink, as used in Google Chrome before 38.0.2125.102 on Android, does not properly handle a certain IFRAME overflow condition, which allows remote attackers to spoof content via a crafted web si...

  • EPSS 0.59%
  • Veröffentlicht 08.10.2014 10:55:07
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Multiple unspecified vulnerabilities in Google V8 before 3.28.71.15, as used in Google Chrome before 38.0.2125.101, allow attackers to cause a denial of service or possibly have other impact via unknown vectors.

  • EPSS 5.95%
  • Veröffentlicht 08.10.2014 10:55:06
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Google Chrome before 38.0.2125.101 and Chrome OS before 38.0.2125.101 do not properly handle the interaction of IPC and Google V8, which allows remote attackers to execute arbitrary code via vectors involving JSON data, related to improper parsing of...