Google

Chrome

3759 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2022-3652

  • EPSS 0.68%
  • Veröffentlicht 01.11.2022 23:15:18
  • Zuletzt bearbeitet 21.11.2024 07:19:57

Type confusion in V8 in Google Chrome prior to 107.0.5304.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2022-3653

  • EPSS 0.46%
  • Veröffentlicht 01.11.2022 23:15:18
  • Zuletzt bearbeitet 21.11.2024 07:19:57

Heap buffer overflow in Vulkan in Google Chrome prior to 107.0.5304.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2022-3654

  • EPSS 18.22%
  • Veröffentlicht 01.11.2022 23:15:18
  • Zuletzt bearbeitet 21.11.2024 07:19:57

Use after free in Layout in Google Chrome prior to 107.0.5304.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2022-3655

  • EPSS 0.17%
  • Veröffentlicht 01.11.2022 23:15:18
  • Zuletzt bearbeitet 21.11.2024 07:19:57

Heap buffer overflow in Media Galleries in Google Chrome prior to 107.0.5304.62 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Med...

8.8

CVE-2022-3656

  • EPSS 2.43%
  • Veröffentlicht 01.11.2022 23:15:18
  • Zuletzt bearbeitet 21.11.2024 07:19:57

Insufficient data validation in File System in Google Chrome prior to 107.0.5304.62 allowed a remote attacker to bypass file system restrictions via a crafted HTML page. (Chromium security severity: Medium)

8.8

CVE-2022-3657

  • EPSS 0.18%
  • Veröffentlicht 01.11.2022 23:15:18
  • Zuletzt bearbeitet 21.11.2024 07:19:58

Use after free in Extensions in Google Chrome prior to 107.0.5304.62 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: Medium)

4.3

CVE-2022-3444

  • EPSS 0.14%
  • Veröffentlicht 01.11.2022 20:15:22
  • Zuletzt bearbeitet 21.11.2024 07:19:31

Insufficient data validation in File System API in Google Chrome prior to 106.0.5249.62 allowed a remote attacker to bypass File System restrictions via a crafted HTML page and malicious file. (Chromium security severity: Low)

8.8

CVE-2022-3307

  • EPSS 0.39%
  • Veröffentlicht 01.11.2022 20:15:21
  • Zuletzt bearbeitet 06.05.2025 17:15:52

Use after free in media in Google Chrome prior to 106.0.5249.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

7.4

CVE-2022-3308

Exploit
  • EPSS 0.13%
  • Veröffentlicht 01.11.2022 20:15:21
  • Zuletzt bearbeitet 06.05.2025 17:15:52

Insufficient policy enforcement in developer tools in Google Chrome prior to 106.0.5249.62 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)

6.5

CVE-2022-3309

Exploit
  • EPSS 0.17%
  • Veröffentlicht 01.11.2022 20:15:21
  • Zuletzt bearbeitet 06.05.2025 16:15:24

Use after free in assistant in Google Chrome on ChromeOS prior to 106.0.5249.62 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via specific UI gestures. (Chromium security seve...