Google

Chrome

3675 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2022-2607

  • EPSS 0.47%
  • Veröffentlicht 12.08.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 07:01:20

Use after free in Tab Strip in Google Chrome on Chrome OS prior to 104.0.5112.79 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via specific UI interactions.

8.8

CVE-2022-2608

  • EPSS 0.47%
  • Veröffentlicht 12.08.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 07:01:20

Use after free in Overview Mode in Google Chrome on Chrome OS prior to 104.0.5112.79 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via specific UI interactions.

8.8

CVE-2022-2609

  • EPSS 0.55%
  • Veröffentlicht 12.08.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 07:01:20

Use after free in Nearby Share in Google Chrome on Chrome OS prior to 104.0.5112.79 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via specific UI interactions.

6.5

CVE-2022-2610

  • EPSS 0.13%
  • Veröffentlicht 12.08.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 07:01:21

Insufficient policy enforcement in Background Fetch in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

4.3

CVE-2022-2611

  • EPSS 0.22%
  • Veröffentlicht 12.08.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 07:01:21

Inappropriate implementation in Fullscreen API in Google Chrome on Android prior to 104.0.5112.79 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.

6.5

CVE-2022-2612

  • EPSS 0.2%
  • Veröffentlicht 12.08.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 07:01:21

Side-channel information leakage in Keyboard input in Google Chrome prior to 104.0.5112.79 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page.

8.8

CVE-2022-2399

Exploit
  • EPSS 0.57%
  • Veröffentlicht 28.07.2022 22:15:08
  • Zuletzt bearbeitet 21.11.2024 07:00:54

Use after free in WebGPU in Google Chrome prior to 100.0.4896.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

4.3

CVE-2022-2479

  • EPSS 0.14%
  • Veröffentlicht 28.07.2022 02:15:08
  • Zuletzt bearbeitet 21.11.2024 07:01:04

Insufficient validation of untrusted input in File in Google Chrome on Android prior to 103.0.5060.134 allowed an attacker who convinced a user to install a malicious app to obtain potentially sensitive information from internal file directories via ...

8.8

CVE-2022-2480

  • EPSS 11.49%
  • Veröffentlicht 28.07.2022 02:15:08
  • Zuletzt bearbeitet 21.11.2024 07:01:04

Use after free in Service Worker API in Google Chrome prior to 103.0.5060.134 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

8.8

CVE-2022-2481

  • EPSS 0.51%
  • Veröffentlicht 28.07.2022 02:15:08
  • Zuletzt bearbeitet 21.11.2024 07:01:04

Use after free in Views in Google Chrome prior to 103.0.5060.134 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via UI interaction.