VYPR

Chrome

by Google

Source repositories

CVEs (5,401)

  • CVE-2019-13741HigDec 10, 2019
    risk 0.57cvss 8.8epss 0.01

    Insufficient validation of untrusted input in Blink in Google Chrome prior to 79.0.3945.79 allowed a local attacker to bypass same origin policy via crafted clipboard content.

  • CVE-2019-13736HigDec 10, 2019
    risk 0.57cvss 8.8epss 0.02

    Integer overflow in PDFium in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.

  • CVE-2019-13735HigDec 10, 2019
    risk 0.57cvss 8.8epss 0.02

    Out of bounds write in JavaScript in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

  • CVE-2019-13732HigDec 10, 2019
    risk 0.57cvss 8.8epss 0.01

    Use-after-free in WebAudio in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2019-13730HigDec 10, 2019
    risk 0.57cvss 8.8epss 0.02

    Type confusion in JavaScript in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2019-13729HigDec 10, 2019
    risk 0.57cvss 8.8epss 0.01

    Use-after-free in WebSockets in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2019-13728HigDec 10, 2019
    risk 0.57cvss 8.8epss 0.02

    Out of bounds write in JavaScript in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2019-13727HigDec 10, 2019
    risk 0.57cvss 8.8epss 0.01

    Insufficient policy enforcement in WebSockets in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to bypass same origin policy via a crafted HTML page.

  • CVE-2019-13726HigDec 10, 2019
    risk 0.57cvss 8.8epss 0.02

    Buffer overflow in password manager in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to execute arbitrary code via a crafted HTML page.

  • CVE-2019-13725HigDec 10, 2019
    risk 0.57cvss 8.8epss 0.02

    Use-after-free in Bluetooth in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to execute arbitrary code via a crafted HTML page.

  • CVE-2019-5843HigDec 10, 2019
    risk 0.57cvss 8.8epss 0.01

    Out of bounds memory access in JavaScript in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2019-5841HigDec 10, 2019
    risk 0.57cvss 8.8epss 0.01

    Out of bounds memory access in JavaScript in Google Chrome prior to 75.0.3770.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2019-5878HigNov 25, 2019
    risk 0.57cvss 8.8epss 0.01

    Use after free in V8 in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2019-5877HigNov 25, 2019
    risk 0.57cvss 8.8epss 0.01

    Out of bounds memory access in JavaScript in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2019-5876HigNov 25, 2019
    risk 0.57cvss 8.8epss 0.01

    Use after free in media in Google Chrome on Android prior to 77.0.3865.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2019-5874HigNov 25, 2019
    risk 0.57cvss 8.8epss 0.01

    Insufficient filtering in URI schemes in Google Chrome on Windows prior to 77.0.3865.75 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.

  • CVE-2019-5871HigNov 25, 2019
    risk 0.57cvss 8.8epss 0.01

    Heap buffer overflow in Skia in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2019-5859HigNov 25, 2019
    risk 0.57cvss 8.8epss 0.01

    Insufficient filtering in URI schemes in Google Chrome on Windows prior to 76.0.3809.87 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.

  • CVE-2019-5858HigNov 25, 2019
    risk 0.57cvss 8.8epss 0.01

    Incorrect security UI in MacOS services integration in Google Chrome on OS X prior to 76.0.3809.87 allowed a local attacker to execute arbitrary code via a crafted HTML page.

  • CVE-2019-5856HigNov 25, 2019
    risk 0.57cvss 8.8epss 0.01

    Insufficient policy enforcement in storage in Google Chrome prior to 76.0.3809.87 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page.

Page 77 of 271