Vulnerabilities in google
4,767 resultsCVE-2018-18354—Insufficient validate of external protocols in Shell Integration in Google Chrome on Windows prior to 71.0.3578.80 allowed a remote attackerEPSS 1.4%CVE-2018-6116—A nullptr dereference in WebAssembly in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to potentially perform out of bounds EPSS 1.4%CVE-2018-18338—Incorrect, thread-unsafe use of SkImage in Canvas in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heEPSS 1.4%CVE-2021-4062—Heap buffer overflow in BFCache in Google Chrome prior to 96.0.4664.93 allowed a remote attacker who had compromised the renderer process toEPSS 1.4%CVE-2018-6133—Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to perform domEPSS 1.4%CVE-2021-21154—Heap buffer overflow in Tab Strip in Google Chrome prior to 88.0.4324.182 allowed a remote attacker who had compromised the renderer processEPSS 1.4%CVE-2019-5830—Insufficient policy enforcement in CORS in Google Chrome prior to 75.0.3770.80 allowed a remote attacker to leak cross-origin data via a craEPSS 1.4%CVE-2020-6536—Incorrect security UI in PWAs in Google Chrome prior to 84.0.4147.89 allowed a remote attacker who had persuaded the user to install a PWA tEPSS 1.4%CVE-2021-30564—Heap buffer overflow in WebXR in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via aEPSS 1.4%CVE-2019-5764—Incorrect pointer management in WebRTC in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit heap corruptiEPSS 1.4%CVE-2019-5821—Integer overflow in PDFium in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crEPSS 1.4%CVE-2021-37980—Inappropriate implementation in Sandbox in Google Chrome prior to 94.0.4606.81 allowed a remote attacker to potentially bypass site isolatioEPSS 1.4%CVE-2021-21169—Out of bounds memory access in V8 in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to potentially perform out of bounds memoEPSS 1.4%CVE-2021-21179—Use after free in Network Internals in Google Chrome on Linux prior to 89.0.4389.72 allowed a remote attacker to potentially exploit heap coEPSS 1.4%CVE-2018-6109—readAsText() can indefinitely read the file picked by the user, rather than only once at the time the file is picked in File API in Google CEPSS 1.4%CVE-2018-6032—Insufficient policy enforcement in Blink in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user cross-orEPSS 1.4%CVE-2018-18359—Incorrect handling of Reflect.construct in V8 in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to perform an out of bounds mEPSS 1.4%CVE-2019-5828—Object lifecycle issue in ServiceWorker in Google Chrome prior to 75.0.3770.80 allowed a remote attacker to potentially perform out of boundEPSS 1.4%CVE-2018-16067—A use after free in WebAudio in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to potentially exploit heap corruption via a cEPSS 1.4%CVE-2018-6173—Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to perform domEPSS 1.4%