CVSS: 9.8EPSS: 0%CPEs: 106EXPL: 0CVE-2013-0908 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0908
04 Mar 2013 — Google Chrome before 25.0.1364.152 does not properly manage bindings of extension processes, which has unspecified impact and attack vectors. Google Chrome anterior a v25.0.1364.152 no gestiona adecuadamente los enlaces de los procesos de las extensiones lo cual tiene un impacto no especificado y vectores de ataque. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.57 are affected. • http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_4.html •
CVSS: 5.0EPSS: 0%CPEs: 106EXPL: 0CVE-2013-0909 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0909
04 Mar 2013 — The XSS Auditor in Google Chrome before 25.0.1364.152 allows remote attackers to obtain sensitive HTTP Referer information via unspecified vectors. El XSS Auditor en Google Chrome anterior a v25.0.1364.152 permite a atacantes remotos obtener informacion sensible de HTTP Referer a través de vectores no especificados. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.57 are affected. • http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_4.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.8EPSS: 0%CPEs: 106EXPL: 0CVE-2013-0904 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0904
04 Mar 2013 — The Web Audio implementation in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors. LA implementación de Web Audio en Google Chrome anterior a v25.0.1364.152, permite a atacantes remotos provocar una denegación de servicio (corrupción de memoria) o posiblemente otro impacto no especificado a través de vectores desconocidos. Multiple vulnerabilities have been reported in Chromium and V8, som... • http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_4.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.1EPSS: 0%CPEs: 106EXPL: 0CVE-2013-0910 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0910
04 Mar 2013 — Google Chrome before 25.0.1364.152 does not properly manage the interaction between the browser process and renderer processes during authorization of the loading of a plug-in, which makes it easier for remote attackers to bypass intended access restrictions via vectors involving a blocked plug-in. Google Chrome anterior a 25.0.1364.152 no maneja adecuadamente la interacción entre el proceso del navegador y el proceso de renderizado durante la carga de un plug-in autorizado, lo que facilita a atacantes remo... • http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_4.html • CWE-287: Improper Authentication •
CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0CVE-2013-0895 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0895
23 Feb 2013 — Google Chrome before 25.0.1364.97 on Linux, and before 25.0.1364.99 on Mac OS X, does not properly handle pathnames during copy operations, which might make it easier for remote attackers to execute arbitrary programs via unspecified vectors. Google Chrome antes de v25.0.1364.97 para Linux, y antes de v25.0.1364.99 para Mac OS X, no maneja correctamente las rutas durante la operaciones de copia, lo que podría hacer que sea más fácil para los atacantes remotos ejecutar programas arbitrarios a través de vecto... • http://googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.8EPSS: 0%CPEs: 7EXPL: 0CVE-2013-0898 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0898
23 Feb 2013 — Use-after-free vulnerability in Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a URL. Vulnerabilidad de uso después de la liberación en Google Chrome anterior a v25.0.1364.97 en Windows y Linux, y anterior a v25.0.1364.99 en Mac OS X, permite a atacantes remotos producir una denegación de servicio (caída de la aplicación) o posiblemente tener otro... • http://googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html • CWE-416: Use After Free •
CVSS: 6.5EPSS: 1%CPEs: 7EXPL: 0CVE-2013-0888 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0888
23 Feb 2013 — Skia, as used in Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to a "user gesture check for dangerous file downloads." Skia, usado pro Google Chrome anterior a v25.0.1364.97 en Windows y Linux, y anterior a v25.0.1364.99 en Mac OS X, permite a atacantes remotos causar una denegación de servicio (lectura fuera de los límites) mediante vectores no especificados. Multiple... • http://googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html • CWE-125: Out-of-bounds Read •
CVSS: 9.8EPSS: 0%CPEs: 7EXPL: 0CVE-2013-0885 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0885
23 Feb 2013 — Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, does not properly restrict API privileges during interaction with the Chrome Web Store, which has unspecified impact and attack vectors. Google Chrome anterior a v25.0.1364.97 en Windows y Linux, y anterior a v25.0.1364.99 en Mac OS X, no restringe correctamente los privilegios de la API durante la interacción con el Chrome Web Store, el cual tiene un impacto no especificado. Multiple vulnerabilities have been repor... • http://googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 8.8EPSS: 1%CPEs: 7EXPL: 0CVE-2013-0892 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0892
23 Feb 2013 — Multiple unspecified vulnerabilities in the IPC layer in Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, allow remote attackers to cause a denial of service or possibly have other impact via unknown vectors. Múltiples vulnerabilidades sin especificar en la capa IPC de Google Chrome v25.0.1364.97 sobre Windows y Linux, y anterior a v25.0.1364.99 sobre Mac OS X, permite a atacantes remotos provocar una denegación de servicio u otro impacto a través de vectores desc... • http://googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html •
CVSS: 8.8EPSS: 0%CPEs: 178EXPL: 0CVE-2013-2268
https://notcve.org/view.php?id=CVE-2013-2268
23 Feb 2013 — Unspecified vulnerability in the MathML implementation in WebKit in Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, has unknown impact and remote attack vectors, related to a "high severity security issue." Vulnerabilidad no especificada en la aplicación MathML en WebKit en Google Chrome antes v25.0.1364.97 en Windows y Linux, y antes v25.0.1364.99 en Mac OS X, tiene un impacto desconocido y vectores de ataque a distancia, relacionado con un "problema de segurida... • http://googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html •