CVE-2025-6558
- EPSS 9.19%
- Veröffentlicht 15.07.2025 18:15:24
- Zuletzt bearbeitet 06.11.2025 14:52:01
Insufficient validation of untrusted input in ANGLE and GPU in Google Chrome prior to 138.0.7204.157 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2025-7656
- EPSS 8.63%
- Veröffentlicht 15.07.2025 18:15:24
- Zuletzt bearbeitet 16.07.2025 14:28:06
Integer overflow in V8 in Google Chrome prior to 138.0.7204.157 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2025-7657
- EPSS 0.5%
- Veröffentlicht 15.07.2025 18:15:24
- Zuletzt bearbeitet 16.07.2025 14:27:43
Use after free in WebRTC in Google Chrome prior to 138.0.7204.157 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2025-34092
- EPSS 0%
- Veröffentlicht 02.07.2025 19:25:35
- Zuletzt bearbeitet 24.07.2025 07:15:53
Rejected reason: Neither filed by Chrome nor a valid security vulnerability.
CVE-2025-34091
- EPSS 0%
- Veröffentlicht 02.07.2025 19:25:27
- Zuletzt bearbeitet 24.07.2025 07:15:53
Rejected reason: Neither filed by Chrome nor a valid security vulnerability.
CVE-2025-34090
- EPSS 0%
- Veröffentlicht 02.07.2025 19:25:13
- Zuletzt bearbeitet 24.07.2025 07:15:52
Rejected reason: Neither filed by Chrome nor a valid security vulnerability.
CVE-2025-6554
- EPSS 6.56%
- Veröffentlicht 30.06.2025 21:14:14
- Zuletzt bearbeitet 24.10.2025 14:11:20
Type confusion in V8 in Google Chrome prior to 138.0.7204.96 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High)
CVE-2025-6555
- EPSS 0.16%
- Veröffentlicht 24.06.2025 20:03:31
- Zuletzt bearbeitet 02.07.2025 17:15:52
Use after free in Animation in Google Chrome prior to 138.0.7204.49 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)
CVE-2025-6556
- EPSS 0.16%
- Veröffentlicht 24.06.2025 20:03:31
- Zuletzt bearbeitet 02.07.2025 17:15:28
Insufficient policy enforcement in Loader in Google Chrome prior to 138.0.7204.49 allowed a remote attacker to bypass content security policy via a crafted HTML page. (Chromium security severity: Low)
CVE-2025-6557
- EPSS 0.18%
- Veröffentlicht 24.06.2025 20:03:31
- Zuletzt bearbeitet 15.07.2025 18:26:56
Insufficient data validation in DevTools in Google Chrome on Windows prior to 138.0.7204.49 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. (Chromium security severit...