CVSS: 9.8EPSS: 1%CPEs: 64EXPL: 0CVE-2013-2873 – Debian Security Advisory 2724-1
https://notcve.org/view.php?id=CVE-2013-2873
10 Jul 2013 — Use-after-free vulnerability in Google Chrome before 28.0.1500.71 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a 404 HTTP status code during the loading of resources. Vulnerabilidad usar despues de liberar en Google Chrome anterior a v28.0.1500.71 permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con el código de estado HTTP 404 durante la ca... • http://git.chromium.org/gitweb/?p=chromium/chromium.git%3Ba=commit%3Bh=4d64b2d296d5de448ab04c4e5af5c7daa2d8e8f8 • CWE-399: Resource Management Errors CWE-416: Use After Free •
CVSS: 8.1EPSS: 0%CPEs: 64EXPL: 0CVE-2013-2879 – Debian Security Advisory 2724-1
https://notcve.org/view.php?id=CVE-2013-2879
10 Jul 2013 — Google Chrome before 28.0.1500.71 does not properly determine the circumstances in which a renderer process can be considered a trusted process for sign-in and subsequent sync operations, which makes it easier for remote attackers to conduct phishing attacks via a crafted web site. Google Chrome anterior a 28.0.1500.71 no determina adecuadamente las circunstancias en las que un proceso de renderizado debe considerarse como confiable para suscribirse y posteriormente realizar operaciones de sincronización, l... • http://git.chromium.org/gitweb/?p=chromium/chromium.git%3Ba=commit%3Bh=8a8eb83276778c9fbcf9ebcd4436077269b73074 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.5EPSS: 0%CPEs: 64EXPL: 0CVE-2013-2878 – Debian Security Advisory 2724-1
https://notcve.org/view.php?id=CVE-2013-2878
10 Jul 2013 — Google Chrome before 28.0.1500.71 allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to the handling of text. Google Chrome anterior a 28.0.1500.71 permite a atacantes remotos provocar una denegación de servicio (lectura fuera de límites) a través de vectores relacionados con el manejo de texto. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.57 are affected. • http://googlechromereleases.blogspot.com/2013/07/stable-channel-update.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 1%CPEs: 63EXPL: 0CVE-2013-2871 – Debian Security Advisory 2724-1
https://notcve.org/view.php?id=CVE-2013-2871
10 Jul 2013 — Use-after-free vulnerability in Google Chrome before 28.0.1500.71 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of input. Vulnerabilidad usar despues de liberar en Google Chrome anterior a v28.0.1500.71 permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con la manipulación de una entrada. Multiple vulnerabilities have been reporte... • http://archives.neohapsis.com/archives/bugtraq/2014-04/0009.html • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 2%CPEs: 63EXPL: 0CVE-2013-2875 – Apple Security Advisory 2014-06-30-4
https://notcve.org/view.php?id=CVE-2013-2875
10 Jul 2013 — core/rendering/svg/SVGInlineTextBox.cpp in the SVG implementation in Blink, as used in Google Chrome before 28.0.1500.71, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors. core/rendering/svg/SVGInlineTextBox.cpp en la implementación de SVG en Blink, utilizado en Google Chrome anterior a 28.0.1500.71, permite a atacantes remotos provocar una denegación de servicio (lectura fuera de rango) a través de vectores no especificados. Multiple vulnerabilities have bee... • http://archives.neohapsis.com/archives/bugtraq/2014-05/0128.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 0%CPEs: 88EXPL: 0CVE-2013-2866
https://notcve.org/view.php?id=CVE-2013-2866
19 Jun 2013 — The Flash plug-in in Google Chrome before 27.0.1453.116, as used on Google Chrome OS before 27.0.1453.116 and separately, does not properly determine whether a user wishes to permit camera or microphone access by a Flash application, which allows remote attackers to obtain sensitive information from a machine's physical environment via a clickjacking attack, as demonstrated by an attack using a crafted Cascading Style Sheets (CSS) opacity property. El plugin Flash en Google Chrome anterior 27.0.1453.116 no ... • http://googlechromereleases.blogspot.com/2013/06/stable-channel-update-for-chrome-os.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 10.0EPSS: 1%CPEs: 82EXPL: 0CVE-2013-2863 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-2863
05 Jun 2013 — Google Chrome before 27.0.1453.110 does not properly handle SSL sockets, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors. Google Chrome anterior a v27.0.1453.110 no controla correctamente sockets SSL, lo que permite a atacantes remotos ejecutar código de su elección o causar una denegación de servicio (por corrupción de memoria) a través de vectores no especificados. Multiple vulnerabilities have been reported in Chromium and V... • http://googlechromereleases.blogspot.com/2013/06/stable-channel-update.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 82EXPL: 0CVE-2013-2862 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-2862
05 Jun 2013 — Skia, as used in Google Chrome before 27.0.1453.110, does not properly handle GPU acceleration, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors. Skia, como se usaba en Google Chrome anterior a v27.0.1453.110, no gestiona correctamente la aceleración GPU, lo que permite a atacantes remotos causar una denegación de servicio (corrupción de memoria) o posiblemente tener otro impacto no especificado mediante vectores des... • http://googlechromereleases.blogspot.com/2013/06/stable-channel-update.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 82EXPL: 0CVE-2013-2865 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-2865
05 Jun 2013 — Multiple unspecified vulnerabilities in Google Chrome before 27.0.1453.110 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. Múltiples vulnerabilidades no especificadas en Google Chrome anterior a v27.0.1453.110 permite que los atacantes puedan provocar una denegación de servicio o posiblemente tener otro impacto a través de vectores desconocidos. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code.... • http://googlechromereleases.blogspot.com/2013/06/stable-channel-update.html •
CVSS: 9.8EPSS: 0%CPEs: 83EXPL: 0CVE-2013-2856 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-2856
05 Jun 2013 — Use-after-free vulnerability in Google Chrome before 27.0.1453.110 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of input. Vulnerabilidad de tipo "usar después de liberar" en Google Chrome anterior a 27.0.1453.110 permite a atacantes remotos causar una denegación de servicio o posiblemente tener otro impacto no especificado mediante vectores relacionados con el manejo de la entrada. Multiple vulnerabilities have been report... • http://googlechromereleases.blogspot.com/2013/06/stable-channel-update.html • CWE-416: Use After Free •