CVSS: 8.8EPSS: 54%CPEs: 111EXPL: 0CVE-2013-0912 – Google Chrome Type Confusion Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2013-0912
11 Mar 2013 — WebKit in Google Chrome before 25.0.1364.160 allows remote attackers to execute arbitrary code via vectors that leverage "type confusion." WebKit en Google Chrome anterior a v25.0.1364.160 permite a atacantes remotos ejecutar código arbitario mediante vectores que aprovechan la "confusión de tipo." (type confusion) This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Google Chrome. User interaction is required to exploit this vulnerability in that the target mu... • http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_7.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 9.8EPSS: 0%CPEs: 106EXPL: 0CVE-2013-0911 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0911
04 Mar 2013 — Directory traversal vulnerability in Google Chrome before 25.0.1364.152 allows remote attackers to have an unspecified impact via vectors related to databases. Vulnerabilidad de salto de directorio en Google Chrome anterior a v25.0.1364.152 permite a atacantes remotos generar un impacto no especificado mediante vectores relacionados con las bases de datos. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.57 are ... • http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_4.html • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.8EPSS: 0%CPEs: 106EXPL: 0CVE-2013-0905 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0905
04 Mar 2013 — Use-after-free vulnerability in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving an SVG animation. Vulnerabilidad en la gestión de recursos en Google Chrome anterior a v25.0.1364.152 permite causar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores que implican una animación SVG. Multiple vulnerabilities have been reported in Chromium and V8, some of which may a... • http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_4.html • CWE-399: Resource Management Errors •
CVSS: 8.1EPSS: 0%CPEs: 106EXPL: 0CVE-2013-0907 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0907
04 Mar 2013 — Race condition in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of media threads. Condición de carrera en Google Chrome anterior a v25.0.1364.152 permite a atacantes remotos causar una denegación de servicio o posiblemente tener un impacto no especificado a través vectores relacionados con el manejo de hilos multimedia. Multiple vulnerabilities have been reported in Chromium and V8, some o... • http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_4.html • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 9.8EPSS: 0%CPEs: 106EXPL: 0CVE-2013-0903 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0903
04 Mar 2013 — Use-after-free vulnerability in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of browser navigation. Vulnerabilidad Use-after free en Google Chrome anterior a v25.0.1364.152, permite a atacantes remotos provocar una denegación de servicio (corrupción de memoria) o posiblemente otro impacto no especificado a través de vectores relacionados con la navegación. Multiple vulnerabilities have be... • http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_4.html • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 0%CPEs: 106EXPL: 0CVE-2013-0906 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0906
04 Mar 2013 — The IndexedDB implementation in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors. La implementación de IndexedDB en Google Chrome anterior a v25.0.1364.152 permite a atacantes remotos causar una denegación de servicio (corrupción de memoria) o posiblemente tener otro impacto no especificado a través de vectores desconocidos. Multiple vulnerabilities have been reported in Chromium and V8, ... • http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_4.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 106EXPL: 0CVE-2013-0902 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0902
04 Mar 2013 — Use-after-free vulnerability in the frame-loader implementation in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. Vulnerabilidad en la gestión de recursos en la implementación frame-loader en Google Chrome anterior a v25.0.1364.152 permite a atacantes remotos causar una denegación de servicio o posiblemente tener otro impacto no especificado a través de vectores desconocidos. Multiple vulnerabilities have... • http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_4.html • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 0%CPEs: 106EXPL: 0CVE-2013-0908 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0908
04 Mar 2013 — Google Chrome before 25.0.1364.152 does not properly manage bindings of extension processes, which has unspecified impact and attack vectors. Google Chrome anterior a v25.0.1364.152 no gestiona adecuadamente los enlaces de los procesos de las extensiones lo cual tiene un impacto no especificado y vectores de ataque. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.57 are affected. • http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_4.html •
CVSS: 5.0EPSS: 0%CPEs: 106EXPL: 0CVE-2013-0909 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0909
04 Mar 2013 — The XSS Auditor in Google Chrome before 25.0.1364.152 allows remote attackers to obtain sensitive HTTP Referer information via unspecified vectors. El XSS Auditor en Google Chrome anterior a v25.0.1364.152 permite a atacantes remotos obtener informacion sensible de HTTP Referer a través de vectores no especificados. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.57 are affected. • http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_4.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.8EPSS: 0%CPEs: 106EXPL: 0CVE-2013-0904 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0904
04 Mar 2013 — The Web Audio implementation in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors. LA implementación de Web Audio en Google Chrome anterior a v25.0.1364.152, permite a atacantes remotos provocar una denegación de servicio (corrupción de memoria) o posiblemente otro impacto no especificado a través de vectores desconocidos. Multiple vulnerabilities have been reported in Chromium and V8, som... • http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_4.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •