CVSS: 9.8EPSS: 0%CPEs: 71EXPL: 0CVE-2013-2837 – Debian Security Advisory 2695-1
https://notcve.org/view.php?id=CVE-2013-2837
22 May 2013 — Use-after-free vulnerability in the SVG implementation in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. Vulnerabilida de tipo "usar despues de liberar " en la implementación SVG en Google Chrome anterior a v27.0.1453.93 permite a atacantes remotos causar una denegación de servicio o posiblemente tener otro impacto no especificado mediante vectores desconocidos. Several vulnerabilities have been discovered... • http://googlechromereleases.blogspot.com/2013/05/stable-channel-release.html • CWE-399: Resource Management Errors •
CVSS: 8.8EPSS: 0%CPEs: 71EXPL: 0CVE-2013-2836 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-2836
22 May 2013 — Multiple unspecified vulnerabilities in Google Chrome before 27.0.1453.93 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. Múltiples vulnerabilidades no especificadas en Google Chrome anterior a v27.0.1453.93 permite que los atacantes puedan provocar una denegación de servicio o posiblemente tener otro impacto a través de vectores desconocidos. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. V... • http://googlechromereleases.blogspot.com/2013/05/stable-channel-release.html •
CVSS: 8.8EPSS: 0%CPEs: 71EXPL: 0CVE-2013-2846 – Debian Security Advisory 2695-1
https://notcve.org/view.php?id=CVE-2013-2846
22 May 2013 — Use-after-free vulnerability in the media loader in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors, a different vulnerability than CVE-2013-2840. Vulnerabilidad "usar despues de liberar" en el cargador media en Google Chrome anterior a v27.0.1453.93 permite a atacantes remotos causar una denegación de servicio o posiblemente tener otro impacto no especificado mediante vectores desconocidos, una vulnerabilid... • http://googlechromereleases.blogspot.com/2013/05/stable-channel-release.html • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 0%CPEs: 71EXPL: 0CVE-2013-2844 – Debian Security Advisory 2695-1
https://notcve.org/view.php?id=CVE-2013-2844
22 May 2013 — Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to style resolution. Vulnerabilidad de tipo "usar despues de liberar" en la implementación de hojas de estilo (Cascading Style Sheets: CSS) en Google Chrome anterior a v27.0.1453.93 permite a atacantes remotos causar una denegación de servicio o posiblemente tener otro impacto no... • http://googlechromereleases.blogspot.com/2013/05/stable-channel-release.html • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 2%CPEs: 119EXPL: 2CVE-2013-2842 – Google Chrome 26.0.1410.43 (Webkit) - OBJECT Element Use-After-Free (PoC)
https://notcve.org/view.php?id=CVE-2013-2842
22 May 2013 — Use-after-free vulnerability in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of widgets. Vulnerabilidad de tipo "usar despues de liberar" en Google Chrome anterior a v27.0.1453.93 permite a atacantes remotos causar una denegación de servicio o posiblemente tener otro impacto no especificados realacionados con la manipulación de "widgets". iTunes 11.1.4 is now available and addresses multip... • https://www.exploit-db.com/exploits/40243 • CWE-399: Resource Management Errors •
CVSS: 8.8EPSS: 0%CPEs: 71EXPL: 0CVE-2013-2839 – Debian Security Advisory 2695-1
https://notcve.org/view.php?id=CVE-2013-2839
22 May 2013 — Google Chrome before 27.0.1453.93 does not properly perform a cast of an unspecified variable during handling of clipboard data, which allows remote attackers to cause a denial of service or possibly have other impact via unknown vectors. Google Chrome anterior a v27.0.1453.93 no lleva a cabo correctamente un "cast" de una variable no especificada durante la manipulación de los datos del portapapeles, lo que permite a atacantes remotos provocar una denegación de servicio o posiblemente tener otro impacto a ... • http://googlechromereleases.blogspot.com/2013/05/stable-channel-release.html • CWE-399: Resource Management Errors •
CVSS: 5.0EPSS: 0%CPEs: 71EXPL: 0CVE-2013-2848 – Apple Security Advisory 2013-09-18-2
https://notcve.org/view.php?id=CVE-2013-2848
22 May 2013 — The XSS Auditor in Google Chrome before 27.0.1453.93 might allow remote attackers to obtain sensitive information via unspecified vectors. El XSS Auditor en Google Chrome anterior a v27.0.1453.93 puede permitir a atacantes remotos obtener información sensible mediante vectores no especificados. Several vulnerabilities have been discovered in the chromium web browser. Multiple use-after-free, out-of-bounds read, memory safety, and cross-site scripting issues were discovered and corrected. • http://googlechromereleases.blogspot.com/2013/05/stable-channel-release.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.1EPSS: 0%CPEs: 71EXPL: 0CVE-2013-2849 – Debian Security Advisory 2695-1
https://notcve.org/view.php?id=CVE-2013-2849
22 May 2013 — Multiple cross-site scripting (XSS) vulnerabilities in Google Chrome before 27.0.1453.93 allow user-assisted remote attackers to inject arbitrary web script or HTML via vectors involving a (1) drag-and-drop or (2) copy-and-paste operation. Múltiples vulnerabilidades de ejecución de secuencias de comandos en sitios cruzados (XSS) en Google Chrome anterior a v27.0.1453.93, permite a atacantes remotos inyectar secuencias de comandos web o HTML a través del parámetro a (1) drag-and-drop o (2)copy-and-paste oper... • http://googlechromereleases.blogspot.com/2013/05/stable-channel-release.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.8EPSS: 1%CPEs: 42EXPL: 0CVE-2013-0926 – Apple Security Advisory 2013-09-18-2
https://notcve.org/view.php?id=CVE-2013-0926
28 Mar 2013 — Google Chrome before 26.0.1410.43 does not properly handle active content in an EMBED element during a copy-and-paste operation, which allows user-assisted remote attackers to have an unspecified impact via a crafted web site. Google Chrome versiones anteriores a v26.0.1410.43 no maneja adecuadamente el contenido activo en un elemento EMBED durante una operación de copiar-y-pegar, permitiendo a atacantes remotos tener un impacto no especificado mediante un sitio web especialmente modificado. Multiple vulner... • http://git.chromium.org/gitweb/?p=chromium/src.git%3Ba=commit%3Bh=52a30db57ecec68bb3b25fdc3de5e9bee7b80ed7 • CWE-20: Improper Input Validation •
CVSS: 8.1EPSS: 0%CPEs: 42EXPL: 0CVE-2013-0921 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0921
28 Mar 2013 — The Isolated Sites feature in Google Chrome before 26.0.1410.43 does not properly enforce the use of separate processes, which makes it easier for remote attackers to bypass intended access restrictions via a crafted web site. La funcionalidad de separación de sitios web en Google Chrome versiones anteriores a v.26.0.1410.43 no refuerza adecuadamente el uso de procesos separados, facilitando a atacantes remotos el saltar las restricciones de acceso implementadas mediante un sitio web manipulado. Multiple vu... • http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_26.html • CWE-264: Permissions, Privileges, and Access Controls •