Google

Chrome

3759 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2022-2616

  • EPSS 0.27%
  • Veröffentlicht 12.08.2022 20:15:09
  • Zuletzt bearbeitet 21.11.2024 07:01:21

Inappropriate implementation in Extensions API in Google Chrome prior to 104.0.5112.79 allowed an attacker who convinced a user to install a malicious extension to spoof the contents of the Omnibox (URL bar) via a crafted Chrome Extension.

8.8

CVE-2022-2617

  • EPSS 0.24%
  • Veröffentlicht 12.08.2022 20:15:09
  • Zuletzt bearbeitet 21.11.2024 07:01:21

Use after free in Extensions API in Google Chrome prior to 104.0.5112.79 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via specific UI interactions.

6.5

CVE-2022-2618

  • EPSS 0.2%
  • Veröffentlicht 12.08.2022 20:15:09
  • Zuletzt bearbeitet 21.11.2024 07:01:22

Insufficient validation of untrusted input in Internals in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to bypass download restrictions via a malicious file .

4.3

CVE-2022-2619

  • EPSS 0.27%
  • Veröffentlicht 12.08.2022 20:15:09
  • Zuletzt bearbeitet 21.11.2024 07:01:22

Insufficient validation of untrusted input in Settings in Google Chrome prior to 104.0.5112.79 allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via a crafted HTML page.

8.8

CVE-2022-2620

  • EPSS 1.29%
  • Veröffentlicht 12.08.2022 20:15:09
  • Zuletzt bearbeitet 21.11.2024 07:01:22

Use after free in WebUI in Google Chrome on Chrome OS prior to 104.0.5112.79 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via specific UI interactions.

8.8

CVE-2022-2621

Exploit
  • EPSS 0.17%
  • Veröffentlicht 12.08.2022 20:15:09
  • Zuletzt bearbeitet 21.11.2024 07:01:22

Use after free in Extensions in Google Chrome prior to 104.0.5112.79 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via specific UI interactions.

6.5

CVE-2022-2622

  • EPSS 0.3%
  • Veröffentlicht 12.08.2022 20:15:09
  • Zuletzt bearbeitet 21.11.2024 07:01:22

Insufficient validation of untrusted input in Safe Browsing in Google Chrome on Windows prior to 104.0.5112.79 allowed a remote attacker to bypass download restrictions via a crafted file.

8.8

CVE-2022-2623

  • EPSS 0.82%
  • Veröffentlicht 12.08.2022 20:15:09
  • Zuletzt bearbeitet 21.11.2024 07:01:22

Use after free in Offline in Google Chrome on Android prior to 104.0.5112.79 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via specific UI interactions.

8.8

CVE-2022-2624

  • EPSS 1.31%
  • Veröffentlicht 12.08.2022 20:15:09
  • Zuletzt bearbeitet 21.11.2024 07:01:22

Heap buffer overflow in PDF in Google Chrome prior to 104.0.5112.79 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via a crafted PDF file.

9.8

CVE-2022-2587

  • EPSS 0.66%
  • Veröffentlicht 12.08.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 07:01:18

Out of bounds write in Chrome OS Audio Server in Google Chrome on Chrome OS prior to 102.0.5005.125 allowed a remote attacker to potentially exploit heap corruption via crafted audio metadata.