CVE-2025-3620
- EPSS 0.26%
- Veröffentlicht 16.04.2025 20:57:45
- Zuletzt bearbeitet 23.04.2025 18:11:43
Use after free in USB in Google Chrome prior to 135.0.7049.95 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2025-3619
- EPSS 0.37%
- Veröffentlicht 16.04.2025 20:57:44
- Zuletzt bearbeitet 15.07.2025 18:20:55
Heap buffer overflow in Codecs in Google Chrome on Windows prior to 135.0.7049.95 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)
CVE-2025-3067
- EPSS 0.55%
- Veröffentlicht 02.04.2025 01:15:38
- Zuletzt bearbeitet 08.09.2025 00:15:30
Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform privilege escalation via a crafted app. (Chromium security seve...
CVE-2025-3068
- EPSS 0.32%
- Veröffentlicht 02.04.2025 01:15:38
- Zuletzt bearbeitet 07.04.2025 13:30:02
Inappropriate implementation in Intents in Google Chrome on Android prior to 135.0.7049.52 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: Medium)
CVE-2025-3069
- EPSS 0.32%
- Veröffentlicht 02.04.2025 01:15:38
- Zuletzt bearbeitet 07.04.2025 13:28:15
Inappropriate implementation in Extensions in Google Chrome prior to 135.0.7049.52 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: Medium)
CVE-2025-3070
- EPSS 0.27%
- Veröffentlicht 02.04.2025 01:15:38
- Zuletzt bearbeitet 07.04.2025 13:28:06
Insufficient validation of untrusted input in Extensions in Google Chrome prior to 135.0.7049.52 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: Medium)
CVE-2025-3071
- EPSS 0.23%
- Veröffentlicht 02.04.2025 01:15:38
- Zuletzt bearbeitet 21.04.2025 20:48:25
Inappropriate implementation in Navigations in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass same origin policy via a crafted HTML page. (Chromium security severity: Lo...
CVE-2025-3072
- EPSS 0.25%
- Veröffentlicht 02.04.2025 01:15:38
- Zuletzt bearbeitet 21.04.2025 20:48:41
Inappropriate implementation in Custom Tabs in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)
CVE-2025-3073
- EPSS 0.25%
- Veröffentlicht 02.04.2025 01:15:38
- Zuletzt bearbeitet 21.04.2025 20:49:20
Inappropriate implementation in Autofill in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)
CVE-2025-3074
- EPSS 0.25%
- Veröffentlicht 02.04.2025 01:15:38
- Zuletzt bearbeitet 21.04.2025 20:49:26
Inappropriate implementation in Downloads in Google Chrome prior to 135.0.7049.52 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)