3426 results (0.012 seconds)

CVSS: -EPSS: 0%CPEs: 1EXPL: 0

Insufficient data validation in PDF in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform out of bounds memory access via a crafted PDF file. (Chromium security severity: Low) • https://issues.chromium.org/issues/40093560 •

CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0

Use after free in Extensions in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) • https://issues.chromium.org/issues/40056265 • CWE-416: Use After Free •

CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0

Inappropriate implementation in Navigation in Google Chrome prior to 113.0.5672.63 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform domain spoofing via a crafted HTML page. (Chromium security severity: Low) • https://issues.chromium.org/issues/40056040 • CWE-451: User Interface (UI) Misrepresentation of Critical Information •

CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0

Inappropriate implementation in Compositing in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium) • https://issues.chromium.org/issues/40055233 • CWE-451: User Interface (UI) Misrepresentation of Critical Information •

CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0

Uninitialized Use in V8 in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Medium) • https://issues.chromium.org/issues/324690505 • CWE-457: Use of Uninitialized Variable •