CVSS: 9.8EPSS: 0%CPEs: 114EXPL: 0CVE-2013-0831 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0831
15 Jan 2013 — Directory traversal vulnerability in Google Chrome before 24.0.1312.52 allows remote attackers to have an unspecified impact by leveraging access to an extension process. Vulnerabilidad de salto de directorio en Google Chrome antes de v24.0.1312.52 permite a atacantes remotos tener un impacto no especificado, aprovechando el acceso al proceso de ampliación. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.57 are... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.8EPSS: 0%CPEs: 122EXPL: 0CVE-2012-5155
https://notcve.org/view.php?id=CVE-2012-5155
15 Jan 2013 — Google Chrome before 24.0.1312.52 on Mac OS X does not use an appropriate sandboxing approach for worker processes, which makes it easier for remote attackers to bypass intended access restrictions via unspecified vectors. Google Chrome anterior a v24.0.1312.52 en Mac OS X no utiliza de forma apropiada el sandbox, haciendo fácil para usuarios remotos eludir las restricciones de acceso mediante vectores no especificados. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 8.8EPSS: 0%CPEs: 121EXPL: 0CVE-2012-5156
https://notcve.org/view.php?id=CVE-2012-5156
15 Jan 2013 — Use-after-free vulnerability in Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving PDF fields. Vulnerabilidad de uso después de la liberación en Google Chrome anterior a v24.0.1312.52 permite a atacantes remotos producir una denegación de servicio (caída de aplicación) o tener otro impacto no especificado mediante vectores que comprenden los campos de un PDF. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-399: Resource Management Errors •
CVSS: 8.8EPSS: 0%CPEs: 124EXPL: 0CVE-2013-0830 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0830
15 Jan 2013 — The IPC layer in Google Chrome before 24.0.1312.52 on Windows omits a NUL character required for termination of an unspecified data structure, which has unknown impact and attack vectors. La capa IPC en Google Chrome en Windows antes de v24.0.1312.52 omite un carácter NUL necesario para la terminación de una estructura de datos sin especificar, lo cual tiene un impacto y vectores de ataque desconocidos. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbi... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 114EXPL: 0CVE-2013-0834 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0834
15 Jan 2013 — Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service (out-of-bounds read) via vectors involving glyphs. Google Chrome antes de v24.0.1312.52 permite a atacantes remotos provocar una denegación de servicio (lectura fuera de límites) a través de vectores que involucran glifos. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.57 are affected. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 114EXPL: 0CVE-2013-0832 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0832
15 Jan 2013 — Use-after-free vulnerability in Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to printing. Una vulnerabilidad de uso después de liberación en Google Chrome antes de v24.0.1312.52 permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con la impresión. Multiple vulnerabilities have been reported in Chromium and V8, so... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 0%CPEs: 122EXPL: 0CVE-2013-0838 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0838
15 Jan 2013 — Google Chrome before 24.0.1312.52 on Linux uses weak permissions for shared memory segments, which has unspecified impact and attack vectors. Google Chrome antes de v24.0.1312.52 en Linux utiliza permisos débiles para el segmento de memoria compartida, lo que tiene un impacto y vectores de ataque no especificados. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.57 are affected. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 8.8EPSS: 0%CPEs: 123EXPL: 0CVE-2012-5145 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2012-5145
15 Jan 2013 — Use-after-free vulnerability in Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to SVG layout. Vulnerabilidad después de liberación en Google Chrome anterior a v24.0.1312.52 que permite a atacantes remotos causar una denegación de servicios o posiblemente tener otro impacto sin especificar a través de vectores relacionados con la capa SVG. Multiple vulnerabilities have been reported in Chromium and V8, some ... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 114EXPL: 0CVE-2012-5146 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2012-5146
15 Jan 2013 — Google Chrome before 24.0.1312.52 allows remote attackers to bypass the Same Origin Policy via a malformed URL. Google Chrome anterior a v24.0.1312.52 permite a atacantes remotos eludir el "Same Origin Policy" mediante una URL malformada. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.57 are affected. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.8EPSS: 0%CPEs: 114EXPL: 0CVE-2012-5147 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2012-5147
15 Jan 2013 — Use-after-free vulnerability in Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to DOM handling. Vulnerabilidad de liberación después de uso en Google Chrome anterior 24.0.1312.52, permite a atacantes remotos provocar una denegación de servicio o posiblemente tener otro impacto sin especificar a través de vectores relacionados con el manejo de DOM. Multiple vulnerabilities have been reported in Chromium and ... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-399: Resource Management Errors •