Vulnerabilidades en google
5202 resultadosCVE-2024-6103HIGHUse after free in Dawn in Google Chrome prior to 126.0.6478.114 allowed a remote attacker to potentially exploit heap corruption via a craftEPSS 0.6%CVE-2019-13663—IDN spoofing in Omnibox in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to perform domain spoofing via IDN homographs via aEPSS 0.6%CVE-2021-4098—Insufficient data validation in Mojo in Google Chrome prior to 96.0.4664.110 allowed a remote attacker who had compromised the renderer procEPSS 0.6%CVE-2022-3887HIGHUse after free in Web Workers in Google Chrome prior to 107.0.5304.106 allowed a remote attacker to potentially exploit heap corruption via EPSS 0.6%CVE-2019-13659—IDN spoofing in Omnibox in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to perform domain spoofing via IDN homographs via aEPSS 0.6%CVE-2023-5487—Inappropriate implementation in Fullscreen in Google Chrome prior to 118.0.5993.70 allowed an attacker who convinced a user to install a malEPSS 0.6%CVE-2024-7966HIGHOut of bounds memory access in Skia in Google Chrome prior to 128.0.6613.84 allowed a remote attacker who had compromised the renderer proceEPSS 0.6%CVE-2022-0292—Inappropriate implementation in Fenced Frames in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who had compromised the rendeEPSS 0.6%CVE-2018-17460—Insufficient data validation in filesystem URIs in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to spoof the contents of thEPSS 0.6%CVE-2019-13681—Insufficient data validation in downloads in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to bypass download restrictions vEPSS 0.6%CVE-2023-4906—Insufficient policy enforcement in Autofill in Google Chrome prior to 117.0.5938.62 allowed a remote attacker to bypass Autofill restrictionEPSS 0.6%CVE-2018-6138—Insufficient policy enforcement in Extensions API in Google Chrome prior to 67.0.3396.62 allowed an attacker who convinced a user to installEPSS 0.6%CVE-2022-2614—Use after free in Sign-In Flow in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to potentially exploit heap corruption via EPSS 0.6%CVE-2022-0455—Inappropriate implementation in Full Screen Mode in Google Chrome on Android prior to 98.0.4758.80 allowed a remote attacker to spoof the coEPSS 0.6%CVE-2023-3736—Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 115.0.5790.98 allowed a remote attacker to leak cross-origiEPSS 0.6%CVE-2019-13680—Inappropriate implementation in TLS in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to spoof client IP address to websites EPSS 0.6%CVE-2024-10230HIGHType Confusion in V8 in Google Chrome prior to 130.0.6723.69 allowed a remote attacker to potentially exploit heap corruption via a crafted EPSS 0.6%CVE-2022-4436—Use after free in Blink Media in Google Chrome prior to 108.0.5359.124 allowed a remote attacker to potentially exploit heap corruption via EPSS 0.6%CVE-2022-2857HIGHUse after free in Blink in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption via a crafEPSS 0.6%CVE-2017-15403—Insufficient data validation in crosh could lead to a command injection under chronos privileges in Networking in Google Chrome on Chrome OSEPSS 0.6%