CVSS: 8.8EPSS: 0%CPEs: 71EXPL: 0CVE-2013-2839 – Debian Security Advisory 2695-1
https://notcve.org/view.php?id=CVE-2013-2839
22 May 2013 — Google Chrome before 27.0.1453.93 does not properly perform a cast of an unspecified variable during handling of clipboard data, which allows remote attackers to cause a denial of service or possibly have other impact via unknown vectors. Google Chrome anterior a v27.0.1453.93 no lleva a cabo correctamente un "cast" de una variable no especificada durante la manipulación de los datos del portapapeles, lo que permite a atacantes remotos provocar una denegación de servicio o posiblemente tener otro impacto a ... • http://googlechromereleases.blogspot.com/2013/05/stable-channel-release.html • CWE-399: Resource Management Errors •
CVSS: 5.0EPSS: 0%CPEs: 71EXPL: 0CVE-2013-2848 – Apple Security Advisory 2013-09-18-2
https://notcve.org/view.php?id=CVE-2013-2848
22 May 2013 — The XSS Auditor in Google Chrome before 27.0.1453.93 might allow remote attackers to obtain sensitive information via unspecified vectors. El XSS Auditor en Google Chrome anterior a v27.0.1453.93 puede permitir a atacantes remotos obtener información sensible mediante vectores no especificados. Several vulnerabilities have been discovered in the chromium web browser. Multiple use-after-free, out-of-bounds read, memory safety, and cross-site scripting issues were discovered and corrected. • http://googlechromereleases.blogspot.com/2013/05/stable-channel-release.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.1EPSS: 0%CPEs: 71EXPL: 0CVE-2013-2849 – Debian Security Advisory 2695-1
https://notcve.org/view.php?id=CVE-2013-2849
22 May 2013 — Multiple cross-site scripting (XSS) vulnerabilities in Google Chrome before 27.0.1453.93 allow user-assisted remote attackers to inject arbitrary web script or HTML via vectors involving a (1) drag-and-drop or (2) copy-and-paste operation. Múltiples vulnerabilidades de ejecución de secuencias de comandos en sitios cruzados (XSS) en Google Chrome anterior a v27.0.1453.93, permite a atacantes remotos inyectar secuencias de comandos web o HTML a través del parámetro a (1) drag-and-drop o (2)copy-and-paste oper... • http://googlechromereleases.blogspot.com/2013/05/stable-channel-release.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 2%CPEs: 119EXPL: 2CVE-2013-2842 – Google Chrome 26.0.1410.43 (Webkit) - OBJECT Element Use-After-Free (PoC)
https://notcve.org/view.php?id=CVE-2013-2842
22 May 2013 — Use-after-free vulnerability in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of widgets. Vulnerabilidad de tipo "usar despues de liberar" en Google Chrome anterior a v27.0.1453.93 permite a atacantes remotos causar una denegación de servicio o posiblemente tener otro impacto no especificados realacionados con la manipulación de "widgets". iTunes 11.1.4 is now available and addresses multip... • https://www.exploit-db.com/exploits/40243 • CWE-399: Resource Management Errors •
CVSS: 6.5EPSS: 0%CPEs: 72EXPL: 0CVE-2013-2838 – Debian Security Advisory 2695-1
https://notcve.org/view.php?id=CVE-2013-2838
22 May 2013 — Google V8, as used in Google Chrome before 27.0.1453.93, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors. Google V8, que se utiliza en Google Chrome anterior a v27.0.1453.93, permite a atacantes remotos provocar una denegación de servicio (fuera de los límites de lectura) a través de vectores no especificados. Several vulnerabilities have been discovered in the chromium web browser. Multiple use-after-free, out-of-bounds read, memory safety, and cross-site s... • http://googlechromereleases.blogspot.com/2013/05/stable-channel-release.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 71EXPL: 0CVE-2013-2847 – Debian Security Advisory 2695-1
https://notcve.org/view.php?id=CVE-2013-2847
22 May 2013 — Race condition in the workers implementation in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact via unknown vectors. Condición de carrera en Google Chrome anterior a v27.0.1453.93 permite a atacantes remotos causar una denegación de servicio (usar despues de liberar y caída de la aplicación) o posiblemente tener un impacto no especificado mediante vectores desconocidos. Several vulnerabili... • http://googlechromereleases.blogspot.com/2013/05/stable-channel-release.html • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 8.8EPSS: 0%CPEs: 71EXPL: 0CVE-2013-2840 – Debian Security Advisory 2695-1
https://notcve.org/view.php?id=CVE-2013-2840
22 May 2013 — Use-after-free vulnerability in the media loader in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors, a different vulnerability than CVE-2013-2846. Vulnerabilidad de tipo "usar despues de liberar" en el cargador de Google Chrome anterior a v27.0.1453.93 permite a atacantes remotos causar una denegación de servicio o posiblemente tener otro impacto no especificados mediante vectores desconocidos. una vulnerabi... • http://googlechromereleases.blogspot.com/2013/05/stable-channel-release.html • CWE-399: Resource Management Errors •
CVSS: 8.8EPSS: 1%CPEs: 71EXPL: 0CVE-2013-2845 – Debian Security Advisory 2695-1
https://notcve.org/view.php?id=CVE-2013-2845
22 May 2013 — The Web Audio implementation in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors. La implementación Web Audio en Google Chrome anterior a v27.0.1453.93 permite a atacantes remotos causar una denegación de servicio (corrupción de memoria) o posiblemnte tener otro impacto no específico mediante vectores desconocidos. Several vulnerabilities have been discovered in the chromium web browser. M... • http://googlechromereleases.blogspot.com/2013/05/stable-channel-release.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 71EXPL: 0CVE-2013-2841 – Debian Security Advisory 2695-1
https://notcve.org/view.php?id=CVE-2013-2841
22 May 2013 — Use-after-free vulnerability in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of Pepper resources. Vulnerabilidad de tipo "usar despues de liberar" en Google Chrome anterior a v27.0.1453.93 permite a atacantes remotos causar una denegación de servicio o posiblemente tener otro impacto no especificados realacionados con la manipulación de recursos "Pepper". Several vulnerabilities have been ... • http://googlechromereleases.blogspot.com/2013/05/stable-channel-release.html • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 0%CPEs: 42EXPL: 0CVE-2013-0925 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0925
28 Mar 2013 — Google Chrome before 26.0.1410.43 does not ensure that an extension has the tabs (aka APIPermission::kTab) permission before providing a URL to this extension, which has unspecified impact and remote attack vectors. Google Chrome versiones anteriores a v26.0.1410.43 no garantiza que una extensión tenga el permiso de pestaña (especificado por APIPermission::kTab) antes de proporcionar una URL a esta extensión, provocando un impacto y vectores de ataque remotos no especificados. Multiple vulnerabilities have ... • http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_26.html • CWE-264: Permissions, Privileges, and Access Controls •