Google

Chrome

5395 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 1.22%
  • Veröffentlicht 03.08.2011 00:55:02
  • Zuletzt bearbeitet 16.06.2026 23:32:01

Google Chrome before 13.0.782.107 does not properly handle Skia paths, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

  • EPSS 1.41%
  • Veröffentlicht 03.08.2011 00:55:02
  • Zuletzt bearbeitet 16.06.2026 23:32:01

Google Chrome before 13.0.782.107 does not properly handle nested functions in PDF documents, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted document.

  • EPSS 1.38%
  • Veröffentlicht 03.08.2011 00:55:02
  • Zuletzt bearbeitet 16.06.2026 23:32:01

Google Chrome before 13.0.782.107 allows remote attackers to bypass the Same Origin Policy and conduct script injection attacks via unspecified vectors.

  • EPSS 1.38%
  • Veröffentlicht 03.08.2011 00:55:02
  • Zuletzt bearbeitet 16.06.2026 23:32:03

Use-after-free vulnerability in Google Chrome before 13.0.782.107 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to display box rendering.

  • EPSS 1.38%
  • Veröffentlicht 03.08.2011 00:55:02
  • Zuletzt bearbeitet 16.06.2026 23:32:03

Google Chrome before 13.0.782.107 allows remote attackers to bypass the Same Origin Policy via vectors related to handling of the base URI.

  • EPSS 1.04%
  • Veröffentlicht 03.08.2011 00:55:01
  • Zuletzt bearbeitet 16.06.2026 23:31:10

Google Chrome before 13.0.782.107 does not ensure that extension installations are confirmed by a browser dialog, which makes it easier for remote attackers to modify the product's functionality via a Trojan horse extension.

  • EPSS 1.54%
  • Veröffentlicht 03.08.2011 00:55:01
  • Zuletzt bearbeitet 16.06.2026 23:31:10

Google Chrome before 13.0.782.107 does not properly track line boxes during rendering, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer."

  • EPSS 1.12%
  • Veröffentlicht 03.08.2011 00:55:01
  • Zuletzt bearbeitet 16.06.2026 23:31:10

Google Chrome before 13.0.782.107 does not ensure that the user is prompted before download of a dangerous file, which makes it easier for remote attackers to bypass intended content restrictions via a crafted web site.

  • EPSS 0.84%
  • Veröffentlicht 03.08.2011 00:55:01
  • Zuletzt bearbeitet 16.06.2026 23:31:10

The Basic Authentication dialog implementation in Google Chrome before 13.0.782.107 does not properly handle strings, which might make it easier for remote attackers to capture credentials via a crafted web site.

  • EPSS 1.29%
  • Veröffentlicht 03.08.2011 00:55:01
  • Zuletzt bearbeitet 16.06.2026 23:31:59

The drag-and-drop implementation in Google Chrome before 13.0.782.107 on Linux does not properly enforce permissions for files, which allows user-assisted remote attackers to bypass intended access restrictions via unspecified vectors.