VYPR

Chrome

by Google

Source repositories

CVEs (5,373)

  • CVE-2022-0289HigFeb 12, 2022
    risk 0.59cvss 8.8epss 0.28

    Use after free in Safe browsing in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-38001HigNov 23, 2021
    risk 0.59cvss 8.8epss 0.27

    Type confusion in V8 in Google Chrome prior to 95.0.4638.69 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30560HigAug 3, 2021
    risk 0.59cvss 8.8epss 0.22

    Use after free in Blink XSLT in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-21118HigFeb 9, 2021
    risk 0.59cvss 8.8epss 0.17

    Insufficient data validation in V8 in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.

  • CVE-2020-6541HigSep 21, 2020
    risk 0.59cvss 8.8epss 0.23

    Use after free in WebUSB in Google Chrome prior to 84.0.4147.105 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2016-5202CriOct 25, 2019
    risk 0.59cvss 9.1epss 0.01

    browser/extensions/api/dial/dial_registry.cc in Google Chrome before 54.0.2840.98 on macOS, before 54.0.2840.99 on Windows, and before 54.0.2840.100 on Linux neglects to copy a device ID before an erase() call, which causes the erase operation to access data that that erase…

  • CVE-2017-15428HigJan 9, 2019
    risk 0.59cvss 8.8epss 0.18

    Insufficient data validation in V8 builtins string generator could lead to out of bounds read and write access in V8 in Google Chrome prior to 62.0.3202.94 and allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

  • CVE-2017-5115HigOct 27, 2017
    risk 0.59cvss 8.8epss 0.26

    Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Windows allowed a remote attacker to potentially exploit object corruption via a crafted HTML page.

  • CVE-2025-7656HigJul 15, 2025
    risk 0.58cvss 8.8epss 0.09

    Integer overflow in V8 in Google Chrome prior to 138.0.7204.157 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2025-6191HigJun 18, 2025
    risk 0.58cvss 8.8epss 0.09

    Integer overflow in V8 in Google Chrome prior to 137.0.7151.119 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

  • CVE-2025-5959HigJun 11, 2025
    risk 0.58cvss 8.8epss 0.11

    Type Confusion in V8 in Google Chrome prior to 137.0.7151.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

  • CVE-2025-2135HigMar 10, 2025
    risk 0.58cvss 8.8epss 0.06

    Type Confusion in V8 in Google Chrome prior to 134.0.6998.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2025-0434HigJan 15, 2025
    risk 0.58cvss 8.8epss 0.06

    Out of bounds memory access in V8 in Google Chrome prior to 132.0.6834.83 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2025-0291HigJan 8, 2025
    risk 0.58cvss 8.8epss 0.07

    Type Confusion in V8 in Google Chrome prior to 131.0.6778.264 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

  • CVE-2024-12692HigDec 18, 2024
    risk 0.58cvss 8.8epss 0.06

    Type Confusion in V8 in Google Chrome prior to 131.0.6778.204 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2024-12382HigDec 12, 2024
    risk 0.58cvss 8.8epss 0.04

    Use after free in Translate in Google Chrome prior to 131.0.6778.139 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2024-12381HigDec 12, 2024
    risk 0.58cvss 8.8epss 0.04

    Type Confusion in V8 in Google Chrome prior to 131.0.6778.139 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2024-9954HigOct 15, 2024
    risk 0.58cvss 8.8epss 0.06

    Use after free in AI in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2024-9122HigSep 25, 2024
    risk 0.58cvss 8.8epss 0.06

    Type Confusion in V8 in Google Chrome prior to 129.0.6668.70 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

  • CVE-2024-4058HigMay 1, 2024
    risk 0.58cvss 8.8epss 0.09

    Type confusion in ANGLE in Google Chrome prior to 124.0.6367.78 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)

Page 16 of 269