VYPR

Chrome

by Google

Source repositories

CVEs (5,320)

  • CVE-2023-2724HigMay 16, 2023
    risk 0.60cvss 8.8epss 0.29

    Type confusion in V8 in Google Chrome prior to 113.0.5672.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2022-2998HigSep 26, 2022
    risk 0.60cvss 8.8epss 0.30

    Use after free in Browser Creation in Google Chrome prior to 104.0.5112.101 allowed a remote attacker who had convinced a user to engage in a specific UI interaction to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2020-6551HigSep 21, 2020
    risk 0.60cvss 8.8epss 0.29

    Use after free in WebXR in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2020-6550HigSep 21, 2020
    risk 0.60cvss 8.8epss 0.29

    Use after free in IndexedDB in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2020-6549HigSep 21, 2020
    risk 0.60cvss 8.8epss 0.29

    Use after free in media in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2026-11153CriJun 4, 2026
    risk 0.59cvss 9.1epss 0.00

    Side-channel information leakage in Forms in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)

  • CVE-2026-9891CriMay 28, 2026
    risk 0.59cvss 9.0epss 0.00

    Use after free in Extensions in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted Chrome Extension. (Chromium security severity: Critical)

  • CVE-2026-9881CriMay 28, 2026
    risk 0.59cvss 9.0epss 0.00

    Use after free in Bluetooth in Google Chrome on Mac prior to 148.0.7778.216 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension. (Chromium security severity: Critical)

  • CVE-2024-0517HigJan 16, 2024
    risk 0.59cvss 8.8epss 0.22

    Out of bounds write in V8 in Google Chrome prior to 120.0.6099.224 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2023-4362HigAug 15, 2023
    risk 0.59cvss 8.8epss 0.18

    Heap buffer overflow in Mojom IDL in Google Chrome prior to 116.0.5845.96 allowed a remote attacker who had compromised the renderer process and gained control of a WebUI process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

  • CVE-2023-4355HigAug 15, 2023
    risk 0.59cvss 8.8epss 0.27

    Out of bounds memory access in V8 in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2023-4069HigAug 3, 2023
    risk 0.59cvss 8.8epss 0.24

    Type Confusion in V8 in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2023-2936HigMay 30, 2023
    risk 0.59cvss 8.8epss 0.23

    Type Confusion in V8 in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2023-2935HigMay 30, 2023
    risk 0.59cvss 8.8epss 0.24

    Type Confusion in V8 in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2023-2725HigMay 16, 2023
    risk 0.59cvss 8.8epss 0.25

    Use after free in Guest View in Google Chrome prior to 113.0.5672.126 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2022-4178HigNov 30, 2022
    risk 0.59cvss 8.8epss 0.24

    Use after free in Mojo in Google Chrome prior to 108.0.5359.71 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2022-3654HigNov 1, 2022
    risk 0.59cvss 8.8epss 0.24

    Use after free in Layout in Google Chrome prior to 107.0.5304.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2022-2480HigJul 28, 2022
    risk 0.59cvss 8.8epss 0.18

    Use after free in Service Worker API in Google Chrome prior to 103.0.5060.134 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2022-1232HigJul 25, 2022
    risk 0.59cvss 8.8epss 0.16

    Type confusion in V8 in Google Chrome prior to 100.0.4896.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2022-0289HigFeb 12, 2022
    risk 0.59cvss 8.8epss 0.28

    Use after free in Safe browsing in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Page 14 of 266