CVSS: 8.8EPSS: 0%CPEs: 63EXPL: 0CVE-2013-2880 – Debian Security Advisory 2724-1
https://notcve.org/view.php?id=CVE-2013-2880
10 Jul 2013 — Multiple unspecified vulnerabilities in Google Chrome before 28.0.1500.71 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. Múltiples vulnerabilidades sin especificar en Google Chrome anterior a 28.0.1500.71, permite a atacantes provocar una denegación de servicio u otro impacto a través de vectores no especificados. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.5... • http://googlechromereleases.blogspot.com/2013/07/stable-channel-update.html •
CVSS: 7.5EPSS: 0%CPEs: 64EXPL: 0CVE-2013-2868 – Debian Security Advisory 2724-1
https://notcve.org/view.php?id=CVE-2013-2868
10 Jul 2013 — common/extensions/sync_helper.cc in Google Chrome before 28.0.1500.71 proceeds with sync operations for NPAPI extensions without checking for a certain plugin permission setting, which might allow remote attackers to trigger unwanted extension changes via unspecified vectors. common/extensions/sync_helper.cc en Google Chrome anteriores a v28.0.1500.71 procede con la sincronización de operaciones para las extensiones NPAPI sin comprobar la configuración de permisos del plugin, lo que podría permitir a atacan... • http://git.chromium.org/gitweb/?p=chromium/chromium.git%3Ba=commit%3Bh=84ece2d5af0e6f746ca63e483e2dbdbcab8b1e6c •
CVSS: 7.5EPSS: 0%CPEs: 64EXPL: 0CVE-2013-2872
https://notcve.org/view.php?id=CVE-2013-2872
10 Jul 2013 — Google Chrome before 28.0.1500.71 on Mac OS X does not ensure a sufficient source of entropy for renderer processes, which might make it easier for remote attackers to defeat cryptographic protection mechanisms in third-party components via unspecified vectors. Google Chrome anterior a v28.0.1500.71 en Mac OS X no asegura una suficiente fuente de entropía en los procesos "renderer", lo que puede hacer que sea más fácil para los atacantes remotos vencer los mecanismos de protección criptográfica de los compo... • http://git.chromium.org/gitweb/?p=chromium/chromium.git%3Ba=commit%3Bh=5e3678ea33ab00b5977bde219cd9ec6f1768d78a •
CVSS: 7.5EPSS: 0%CPEs: 64EXPL: 0CVE-2013-2876 – Debian Security Advisory 2724-1
https://notcve.org/view.php?id=CVE-2013-2876
10 Jul 2013 — browser/extensions/api/tabs/tabs_api.cc in Google Chrome before 28.0.1500.71 does not properly enforce restrictions on the capture of screenshots by extensions, which allows remote attackers to obtain sensitive information about the content of a previous page via vectors involving an interstitial page. browser/extensions/api/tabs/tabs_api.cc en Google Chrome anterior 28.0.1500.71 no refuerza adecuadamente las restricciones en las capturas de pantalla a través de extensiones, lo que permite a atacantes remot... • http://git.chromium.org/gitweb/?p=chromium/chromium.git%3Ba=commit%3Bh=ac41418e77bf9d82a6e7875c504fad5fd2ba1f7f • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 8.8EPSS: 0%CPEs: 64EXPL: 0CVE-2013-2867 – Debian Security Advisory 2724-1
https://notcve.org/view.php?id=CVE-2013-2867
10 Jul 2013 — Google Chrome before 28.0.1500.71 does not properly prevent pop-under windows, which allows remote attackers to have an unspecified impact via a crafted web site. Google Chrome anterior a 28.0.1500.71 no previene adecuadamente las ventanas pop-under, lo que permite a atacantes remotos provocar un impacto no especificado a través de un sitio web manipulado. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.57 are ... • http://googlechromereleases.blogspot.com/2013/07/stable-channel-update.html •
CVSS: 9.1EPSS: 0%CPEs: 64EXPL: 0CVE-2013-2874 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-2874
10 Jul 2013 — Google Chrome before 28.0.1500.71 on Windows, when an Nvidia GPU is used, allows remote attackers to bypass intended restrictions on access to screen data via vectors involving IPC transmission of GL textures. Google Chrome anterior a v28.0.1500.71 en Windows, cuando se utiliza una GPU Nvidia, permite a atacantes remotos eludir las restricciones en el acceso a los datos de la pantalla a través de vectores relacionados con la transmisión IPC de texturas GL. Multiple vulnerabilities have been reported in Chro... • http://googlechromereleases.blogspot.com/2013/07/stable-channel-update.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.8EPSS: 1%CPEs: 64EXPL: 0CVE-2013-2873 – Debian Security Advisory 2724-1
https://notcve.org/view.php?id=CVE-2013-2873
10 Jul 2013 — Use-after-free vulnerability in Google Chrome before 28.0.1500.71 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a 404 HTTP status code during the loading of resources. Vulnerabilidad usar despues de liberar en Google Chrome anterior a v28.0.1500.71 permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con el código de estado HTTP 404 durante la ca... • http://git.chromium.org/gitweb/?p=chromium/chromium.git%3Ba=commit%3Bh=4d64b2d296d5de448ab04c4e5af5c7daa2d8e8f8 • CWE-399: Resource Management Errors CWE-416: Use After Free •
CVSS: 8.1EPSS: 0%CPEs: 64EXPL: 0CVE-2013-2879 – Debian Security Advisory 2724-1
https://notcve.org/view.php?id=CVE-2013-2879
10 Jul 2013 — Google Chrome before 28.0.1500.71 does not properly determine the circumstances in which a renderer process can be considered a trusted process for sign-in and subsequent sync operations, which makes it easier for remote attackers to conduct phishing attacks via a crafted web site. Google Chrome anterior a 28.0.1500.71 no determina adecuadamente las circunstancias en las que un proceso de renderizado debe considerarse como confiable para suscribirse y posteriormente realizar operaciones de sincronización, l... • http://git.chromium.org/gitweb/?p=chromium/chromium.git%3Ba=commit%3Bh=8a8eb83276778c9fbcf9ebcd4436077269b73074 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.5EPSS: 0%CPEs: 64EXPL: 0CVE-2013-2878 – Debian Security Advisory 2724-1
https://notcve.org/view.php?id=CVE-2013-2878
10 Jul 2013 — Google Chrome before 28.0.1500.71 allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to the handling of text. Google Chrome anterior a 28.0.1500.71 permite a atacantes remotos provocar una denegación de servicio (lectura fuera de límites) a través de vectores relacionados con el manejo de texto. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.57 are affected. • http://googlechromereleases.blogspot.com/2013/07/stable-channel-update.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 1%CPEs: 63EXPL: 0CVE-2013-2871 – Debian Security Advisory 2724-1
https://notcve.org/view.php?id=CVE-2013-2871
10 Jul 2013 — Use-after-free vulnerability in Google Chrome before 28.0.1500.71 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of input. Vulnerabilidad usar despues de liberar en Google Chrome anterior a v28.0.1500.71 permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con la manipulación de una entrada. Multiple vulnerabilities have been reporte... • http://archives.neohapsis.com/archives/bugtraq/2014-04/0009.html • CWE-20: Improper Input Validation •