Vulnerabilities in Google
4,767 resultsCVE-2018-6090—An integer overflow that lead to a heap buffer-overflow in Skia in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to executeEPSS 3.3%CVE-2018-16065—A Javascript reentrancy issues that caused a use-after-free in V8 in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to executEPSS 3.2%CVE-2019-5798—Lack of correct bounds checking in Skia in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform an out of bounds memory EPSS 3.2%CVE-2018-18356—An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to poEPSS 3.1%CVE-2021-21110—Use after free in safe browsing in Google Chrome prior to 87.0.4280.141 allowed a remote attacker to potentially perform a sandbox escape viEPSS 3.1%CVE-2020-6390—Out of bounds memory access in streams in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruptiEPSS 3.1%CVE-2021-21133—Insufficient policy enforcement in Downloads in Google Chrome prior to 88.0.4324.96 allowed an attacker who convinced a user to download filEPSS 3.0%CVE-2019-5770—Insufficient input validation in WebGL in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform an out of bounds memory rEPSS 3.0%CVE-2024-32896HIGHthere is a possible way to bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional exeEPSS 3.0%KEVCVE-2020-6512—Type Confusion in V8 in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HEPSS 3.0%CVE-2020-6513—Heap buffer overflow in PDFium in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via aEPSS 3.0%CVE-2025-9132HIGHOut of bounds write in V8 in Google Chrome prior to 139.0.7258.138 allowed a remote attacker to potentially exploit heap corruption via a crEPSS 3.0%CVE-2018-6130—Incorrect handling of object lifetimes in WebRTC in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to potentially perform outEPSS 3.0%CVE-2025-5063HIGHUse after free in Compositing in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially exploit heap corruption via aEPSS 2.9%CVE-2020-15964—Insufficient data validation in media in Google Chrome prior to 85.0.4183.121 allowed a remote attacker to potentially exploit heap corruptiEPSS 2.9%CVE-2023-1531HIGHUse after free in ANGLE in Google Chrome prior to 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption via a crafEPSS 2.9%CVE-2020-6463—Use after free in ANGLE in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to potentially exploit heap corruption via a craftEPSS 2.9%CVE-2020-6524—Heap buffer overflow in WebAudio in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption viaEPSS 2.9%CVE-2020-6426—Inappropriate implementation in V8 in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption EPSS 2.9%CVE-2020-16013HIGHInappropriate implementation in V8 in Google Chrome prior to 86.0.4240.198 allowed a remote attacker to potentially exploit heap corruption EPSS 2.8%KEV