Google

Chrome

292 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2025-3619

  • EPSS 0.12%
  • Veröffentlicht 16.04.2025 20:57:44
  • Zuletzt bearbeitet 15.07.2025 18:20:55

Heap buffer overflow in Codecs in Google Chrome on Windows prior to 135.0.7049.95 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)

8.6

CVE-2025-3067

  • EPSS 0.21%
  • Veröffentlicht 02.04.2025 01:15:38
  • Zuletzt bearbeitet 08.09.2025 00:15:30

Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform privilege escalation via a crafted app. (Chromium security seve...

8.8

CVE-2025-3068

  • EPSS 0.29%
  • Veröffentlicht 02.04.2025 01:15:38
  • Zuletzt bearbeitet 07.04.2025 13:30:02

Inappropriate implementation in Intents in Google Chrome on Android prior to 135.0.7049.52 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: Medium)

8.8

CVE-2025-3069

  • EPSS 0.25%
  • Veröffentlicht 02.04.2025 01:15:38
  • Zuletzt bearbeitet 07.04.2025 13:28:15

Inappropriate implementation in Extensions in Google Chrome prior to 135.0.7049.52 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: Medium)

6.5

CVE-2025-3070

  • EPSS 0.29%
  • Veröffentlicht 02.04.2025 01:15:38
  • Zuletzt bearbeitet 07.04.2025 13:28:06

Insufficient validation of untrusted input in Extensions in Google Chrome prior to 135.0.7049.52 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: Medium)

5.4

CVE-2025-3071

  • EPSS 0.04%
  • Veröffentlicht 02.04.2025 01:15:38
  • Zuletzt bearbeitet 21.04.2025 20:48:25

Inappropriate implementation in Navigations in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass same origin policy via a crafted HTML page. (Chromium security severity: Lo...

5.4

CVE-2025-3072

  • EPSS 0.18%
  • Veröffentlicht 02.04.2025 01:15:38
  • Zuletzt bearbeitet 21.04.2025 20:48:41

Inappropriate implementation in Custom Tabs in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

5.4

CVE-2025-3073

  • EPSS 0.18%
  • Veröffentlicht 02.04.2025 01:15:38
  • Zuletzt bearbeitet 21.04.2025 20:49:20

Inappropriate implementation in Autofill in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

5.4

CVE-2025-3074

  • EPSS 0.15%
  • Veröffentlicht 02.04.2025 01:15:38
  • Zuletzt bearbeitet 21.04.2025 20:49:26

Inappropriate implementation in Downloads in Google Chrome prior to 135.0.7049.52 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

8.8

CVE-2025-3066

  • EPSS 0.33%
  • Veröffentlicht 02.04.2025 01:15:37
  • Zuletzt bearbeitet 08.04.2025 20:15:28

Use after free in Site Isolation in Google Chrome prior to 135.0.7049.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)