VYPR

Chrome

by Google

Source repositories

CVEs (5,401)

  • CVE-2018-6149HigJun 27, 2019
    risk 0.57cvss 8.8epss 0.01

    Type confusion in JavaScript in Google Chrome prior to 67.0.3396.87 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page.

  • CVE-2018-6131HigJun 27, 2019
    risk 0.57cvss 8.8epss 0.01

    Object lifecycle issue in WebAssembly in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2018-6121HigJun 27, 2019
    risk 0.57cvss 8.8epss 0.01

    Insufficient validation of input in Blink in Google Chrome prior to 66.0.3359.170 allowed a remote attacker to perform privilege escalation via a crafted HTML page.

  • CVE-2018-6118HigJun 27, 2019
    risk 0.57cvss 8.8epss 0.01

    A double-eviction in the Incognito mode cache that lead to a user-after-free in cache in Google Chrome prior to 66.0.3359.139 allowed a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML page.

  • CVE-2018-17479HigJun 27, 2019
    risk 0.57cvss 8.8epss 0.01

    Incorrect object lifetime calculations in GPU code in Google Chrome prior to 70.0.3538.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2018-17478HigJun 27, 2019
    risk 0.57cvss 8.8epss 0.01

    Incorrect array position calculations in V8 in Google Chrome prior to 70.0.3538.102 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page.

  • CVE-2018-16070HigJun 27, 2019
    risk 0.57cvss 8.8epss 0.01

    Integer overflows in Skia in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2019-5795HigMay 23, 2019
    risk 0.57cvss 8.8epss 0.01

    Integer overflow in PDFium in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to potentially perform out of bounds memory access via a crafted PDF file.

  • CVE-2019-5792HigMay 23, 2019
    risk 0.57cvss 8.8epss 0.01

    Integer overflow in PDFium in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to potentially perform out of bounds memory access via a crafted PDF file.

  • CVE-2019-5791HigMay 23, 2019
    risk 0.57cvss 8.8epss 0.02

    Inappropriate optimization in V8 in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.

  • CVE-2019-5790HigMay 23, 2019
    risk 0.57cvss 8.8epss 0.02

    An integer overflow leading to an incorrect capacity of a buffer in JavaScript in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

  • CVE-2019-5787HigMay 23, 2019
    risk 0.57cvss 8.8epss 0.02

    Use-after-garbage-collection in Blink in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2019-5783HigFeb 19, 2019
    risk 0.57cvss 8.8epss 0.01

    Missing URI encoding of untrusted input in DevTools in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform a Dangling Markup Injection attack via a crafted HTML page.

  • CVE-2019-5774HigFeb 19, 2019
    risk 0.57cvss 8.8epss 0.02

    Omission of the .desktop filetype from the Safe Browsing checklist in SafeBrowsing in Google Chrome on Linux prior to 72.0.3626.81 allowed an attacker who convinced a user to download a .desktop file to execute arbitrary code via a downloaded .desktop file.

  • CVE-2019-5772HigFeb 19, 2019
    risk 0.57cvss 8.8epss 0.02

    Sharing of objects over calls into JavaScript runtime in PDFium in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.

  • CVE-2019-5771HigFeb 19, 2019
    risk 0.57cvss 8.8epss 0.03

    An incorrect JIT of GLSL shaders in SwiftShader in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to execute arbitrary code via a crafted HTML page.

  • CVE-2019-5770HigFeb 19, 2019
    risk 0.57cvss 8.8epss 0.03

    Insufficient input validation in WebGL in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.

  • CVE-2019-5769HigFeb 19, 2019
    risk 0.57cvss 8.8epss 0.02

    Incorrect handling of invalid end character position when front rendering in Blink in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2019-5764HigFeb 19, 2019
    risk 0.57cvss 8.8epss 0.01

    Incorrect pointer management in WebRTC in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2019-5763HigFeb 19, 2019
    risk 0.57cvss 8.8epss 0.02

    Failure to check error conditions in V8 in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Page 80 of 271