Google

Chrome

3759 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2022-2157

  • EPSS 0.87%
  • Veröffentlicht 28.07.2022 01:15:16
  • Zuletzt bearbeitet 21.11.2024 07:00:26

Use after free in Interest groups in Google Chrome prior to 103.0.5060.53 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.

8.8

CVE-2022-2158

  • EPSS 0.61%
  • Veröffentlicht 28.07.2022 01:15:16
  • Zuletzt bearbeitet 21.11.2024 07:00:26

Type confusion in V8 in Google Chrome prior to 103.0.5060.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

6.5

CVE-2022-2160

Exploit
  • EPSS 0.26%
  • Veröffentlicht 28.07.2022 01:15:16
  • Zuletzt bearbeitet 21.11.2024 07:00:26

Insufficient policy enforcement in DevTools in Google Chrome on Windows prior to 103.0.5060.53 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from a user's local files via a craft...

8.8

CVE-2022-2161

  • EPSS 0.61%
  • Veröffentlicht 28.07.2022 01:15:16
  • Zuletzt bearbeitet 21.11.2024 07:00:27

Use after free in WebApp Provider in Google Chrome prior to 103.0.5060.53 allowed a remote attacker who convinced the user to engage in specific user interactions to potentially exploit heap corruption via specific UI interactions.

6.5

CVE-2022-1862

  • EPSS 0.2%
  • Veröffentlicht 27.07.2022 22:15:09
  • Zuletzt bearbeitet 21.11.2024 06:41:38

Inappropriate implementation in Extensions in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to bypass profile restrictions via a crafted HTML page.

8.8

CVE-2022-1863

  • EPSS 0.17%
  • Veröffentlicht 27.07.2022 22:15:09
  • Zuletzt bearbeitet 21.11.2024 06:41:38

Use after free in Tab Groups in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension and specific user interaction.

8.8

CVE-2022-1864

  • EPSS 0.18%
  • Veröffentlicht 27.07.2022 22:15:09
  • Zuletzt bearbeitet 21.11.2024 06:41:38

Use after free in WebApp Installs in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension and specific user interaction.

8.8

CVE-2022-1865

  • EPSS 0.18%
  • Veröffentlicht 27.07.2022 22:15:09
  • Zuletzt bearbeitet 21.11.2024 06:41:38

Use after free in Bookmarks in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension and specific user interaction.

8.8

CVE-2022-1866

  • EPSS 0.8%
  • Veröffentlicht 27.07.2022 22:15:09
  • Zuletzt bearbeitet 21.11.2024 06:41:38

Use after free in Tablet Mode in Google Chrome on Chrome OS prior to 102.0.5005.61 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via specific user interactions.

6.5

CVE-2022-1867

  • EPSS 0.38%
  • Veröffentlicht 27.07.2022 22:15:09
  • Zuletzt bearbeitet 21.11.2024 06:41:38

Insufficient validation of untrusted input in Data Transfer in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to bypass same origin policy via a crafted clipboard content.