Vulnerabilidades en google

5229 resultados
CVE-2026-7349HIGHUse after free in Cast in Google Chrome prior to 147.0.7727.138 allowed an attacker on the local network segment to execute arbitrary code iEPSS 0.1%CVE-2026-8010MEDIUMInsufficient validation of untrusted input in SiteIsolation in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had comproEPSS 0.1%CVE-2026-0124CRITICALThere is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional eEPSS 0.1%CVE-2023-40074In saveToXml of PersistableBundle.java, invalid data could lead to local persistent denial of service with no additional execution privilegeEPSS 0.1%CVE-2026-12457MEDIUMInappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.155 allowed a remote attacker who had compromised the renderEPSS 0.1%CVE-2026-14144MEDIUMIncorrect security UI in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific EPSS 0.1%CVE-2024-0014HIGHIn startInstall of UpdateFetcher.java, there is a possible way to trigger a malicious config update due to a logic error. This could lead toEPSS 0.1%CVE-2026-11062MEDIUMInsufficient policy enforcement in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a EPSS 0.1%CVE-2023-35668In visitUris of Notification.java, there is a possible way to display images from another user due to a confused deputy. This could lead to EPSS 0.1%CVE-2026-13808MEDIUMInsufficient data validation in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a local attacker to obtain potentiallyEPSS 0.1%CVE-2026-8579LOWInsufficient validation of untrusted input in Skia in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised thEPSS 0.1%CVE-2023-40073In visitUris of Notification.java, there is a possible cross-user media read due to Confused Deputy. This could lead to local information diEPSS 0.1%CVE-2026-8565MEDIUMInappropriate implementation in Downloads in Google Chrome on Mac prior to 148.0.7778.168 allowed an attacker who convinced a user to instalEPSS 0.1%CVE-2023-40101In collapse of canonicalize_md.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local informationEPSS 0.1%CVE-2026-5899MEDIUMInsufficient policy enforcement in History Navigation in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a userEPSS 0.1%CVE-2026-7338HIGHUse after free in Cast in Google Chrome prior to 147.0.7727.138 allowed an attacker on the local network segment to potentially exploit heapEPSS 0.1%CVE-2024-0021HIGHIn onCreate of NotificationAccessConfirmationActivity.java, there is a possible way for an app in the work profile to enable notification liEPSS 0.1%CVE-2026-12463MEDIUMInappropriate implementation in Views in Google Chrome on Linux prior to 149.0.7827.155 allowed a remote attacker who had compromised the reEPSS 0.1%CVE-2024-31326HIGHIn multiple locations, there is a possible way in which policy migration code will never be executed due to a logic error in the code. This EPSS 0.1%CVE-2024-0051HIGHIn onQueueFilled of SoftMPEG4.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalatioEPSS 0.1%