CVSS: 8.8EPSS: 2%CPEs: 70EXPL: 0CVE-2013-2885 – Debian Security Advisory 2732-1
https://notcve.org/view.php?id=CVE-2013-2885
30 Jul 2013 — Use-after-free vulnerability in Google Chrome before 28.0.1500.95 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to not properly considering focus during the processing of JavaScript events in the presence of a multiple-fields input type. Vulnerabilidad de uso después de liberación en Google Chrome anterior a 28.0.1500.95, permite a atacantes remotos provocar una denegación de servicio o posiblemente causar otro impacto a través de vectores... • http://googlechromereleases.blogspot.com/2013/07/stable-channel-update_30.html • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 1%CPEs: 70EXPL: 0CVE-2013-2884 – Debian Security Advisory 2732-1
https://notcve.org/view.php?id=CVE-2013-2884
30 Jul 2013 — Use-after-free vulnerability in the DOM implementation in Google Chrome before 28.0.1500.95 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to improper tracking of which document owns an Attr object. Vulnerabilidad de uso después de liberación en la implementación DOM en Google Chrome anterior a 28.0.1500.95, permite a atacantes remotos provocar una denegación de servicio y causar otro tipo de impacto a través de vectores relacionado con un ... • http://googlechromereleases.blogspot.com/2013/07/stable-channel-update_30.html • CWE-399: Resource Management Errors •
CVSS: 6.5EPSS: 0%CPEs: 64EXPL: 0CVE-2013-2878 – Debian Security Advisory 2724-1
https://notcve.org/view.php?id=CVE-2013-2878
10 Jul 2013 — Google Chrome before 28.0.1500.71 allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to the handling of text. Google Chrome anterior a 28.0.1500.71 permite a atacantes remotos provocar una denegación de servicio (lectura fuera de límites) a través de vectores relacionados con el manejo de texto. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.57 are affected. • http://googlechromereleases.blogspot.com/2013/07/stable-channel-update.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.1EPSS: 0%CPEs: 64EXPL: 0CVE-2013-2874 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-2874
10 Jul 2013 — Google Chrome before 28.0.1500.71 on Windows, when an Nvidia GPU is used, allows remote attackers to bypass intended restrictions on access to screen data via vectors involving IPC transmission of GL textures. Google Chrome anterior a v28.0.1500.71 en Windows, cuando se utiliza una GPU Nvidia, permite a atacantes remotos eludir las restricciones en el acceso a los datos de la pantalla a través de vectores relacionados con la transmisión IPC de texturas GL. Multiple vulnerabilities have been reported in Chro... • http://googlechromereleases.blogspot.com/2013/07/stable-channel-update.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 8.1EPSS: 0%CPEs: 63EXPL: 0CVE-2013-2853 – Debian Security Advisory 2724-1
https://notcve.org/view.php?id=CVE-2013-2853
10 Jul 2013 — The HTTPS implementation in Google Chrome before 28.0.1500.71 does not ensure that headers are terminated by \r\n\r\n (carriage return, newline, carriage return, newline), which allows man-in-the-middle attackers to have an unspecified impact via vectors that trigger header truncation. La implementación HTTPS en Google Chrome anterior a 28.0.1500.71 no verifica que las cabeceras finalicen con \r\n\r\n (retorno de carro, nueva línea, retorno de carro, nueva línea), lo que permite a atacantes man-in-the-middl... • http://git.chromium.org/gitweb/?p=chromium/chromium.git%3Ba=commit%3Bh=44b400c80726ee5d205a27730a0c846be656a071 •
CVSS: 9.3EPSS: 0%CPEs: 64EXPL: 0CVE-2013-2870 – Debian Security Advisory 2724-1
https://notcve.org/view.php?id=CVE-2013-2870
10 Jul 2013 — Use-after-free vulnerability in Google Chrome before 28.0.1500.71 allows remote servers to execute arbitrary code via crafted response traffic after a URL request. Vulnerabilidad usar despues de liberar en Google Chrome anterior a v28.0.1500.71 permite a atacantes remotos ejecutar código arbitrario mediante una respuesta especialmente diseñada despues de una solicitud URL. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than ... • http://git.chromium.org/gitweb/?p=chromium/chromium.git%3Ba=commit%3Bh=2b0ff6d8a832f4fe5c187b17342b56675fbf7b96 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 64EXPL: 0CVE-2013-2868 – Debian Security Advisory 2724-1
https://notcve.org/view.php?id=CVE-2013-2868
10 Jul 2013 — common/extensions/sync_helper.cc in Google Chrome before 28.0.1500.71 proceeds with sync operations for NPAPI extensions without checking for a certain plugin permission setting, which might allow remote attackers to trigger unwanted extension changes via unspecified vectors. common/extensions/sync_helper.cc en Google Chrome anteriores a v28.0.1500.71 procede con la sincronización de operaciones para las extensiones NPAPI sin comprobar la configuración de permisos del plugin, lo que podría permitir a atacan... • http://git.chromium.org/gitweb/?p=chromium/chromium.git%3Ba=commit%3Bh=84ece2d5af0e6f746ca63e483e2dbdbcab8b1e6c •
CVSS: 6.5EPSS: 2%CPEs: 63EXPL: 0CVE-2013-2875 – Apple Security Advisory 2014-06-30-4
https://notcve.org/view.php?id=CVE-2013-2875
10 Jul 2013 — core/rendering/svg/SVGInlineTextBox.cpp in the SVG implementation in Blink, as used in Google Chrome before 28.0.1500.71, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors. core/rendering/svg/SVGInlineTextBox.cpp en la implementación de SVG en Blink, utilizado en Google Chrome anterior a 28.0.1500.71, permite a atacantes remotos provocar una denegación de servicio (lectura fuera de rango) a través de vectores no especificados. Multiple vulnerabilities have bee... • http://archives.neohapsis.com/archives/bugtraq/2014-05/0128.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 1%CPEs: 63EXPL: 0CVE-2013-2871 – Debian Security Advisory 2724-1
https://notcve.org/view.php?id=CVE-2013-2871
10 Jul 2013 — Use-after-free vulnerability in Google Chrome before 28.0.1500.71 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of input. Vulnerabilidad usar despues de liberar en Google Chrome anterior a v28.0.1500.71 permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con la manipulación de una entrada. Multiple vulnerabilities have been reporte... • http://archives.neohapsis.com/archives/bugtraq/2014-04/0009.html • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 1%CPEs: 64EXPL: 0CVE-2013-2873 – Debian Security Advisory 2724-1
https://notcve.org/view.php?id=CVE-2013-2873
10 Jul 2013 — Use-after-free vulnerability in Google Chrome before 28.0.1500.71 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a 404 HTTP status code during the loading of resources. Vulnerabilidad usar despues de liberar en Google Chrome anterior a v28.0.1500.71 permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con el código de estado HTTP 404 durante la ca... • http://git.chromium.org/gitweb/?p=chromium/chromium.git%3Ba=commit%3Bh=4d64b2d296d5de448ab04c4e5af5c7daa2d8e8f8 • CWE-399: Resource Management Errors CWE-416: Use After Free •