CVSS: 9.8EPSS: 2%CPEs: 4EXPL: 0CVE-2011-2855
https://notcve.org/view.php?id=CVE-2011-2855
17 Sep 2011 — Google Chrome before 14.0.835.163 does not properly handle Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale node." Google Chrome antes de la v14.0.835.163 no controla correctamente secuencias de señal Cascading Style Sheets (CSS), lo que permite a atacantes remotos causar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores des... • http://code.google.com/p/chromium/issues/detail?id=92959 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2011-2856
https://notcve.org/view.php?id=CVE-2011-2856
17 Sep 2011 — Google V8, as used in Google Chrome before 14.0.835.163, allows remote attackers to bypass the Same Origin Policy via unspecified vectors. Google V8, como se usa en Google Chrome antes de v14.0.835.163, permite a atacantes remotos eludir la "Same Origin Policy" a través de vectores no especificados. • http://code.google.com/p/chromium/issues/detail?id=93416 • CWE-346: Origin Validation Error •
CVSS: 9.8EPSS: 6%CPEs: 4EXPL: 0CVE-2011-2857
https://notcve.org/view.php?id=CVE-2011-2857
17 Sep 2011 — Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the focus controller. Vulnerabilidad de tipo "usar-después-de-liberar" en Google Chrome antes de la v14.0.835.163 permite a atacantes remotos causar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con el controlador de enfoque. • http://code.google.com/p/chromium/issues/detail?id=93420 • CWE-416: Use After Free •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2011-2858
https://notcve.org/view.php?id=CVE-2011-2858
17 Sep 2011 — Google Chrome before 14.0.835.163 does not properly handle triangle arrays, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors. Google Chrome antes de v14.0.835.163, no maneja adecuadamente matrices de triángulo, lo que permite a atacantes remotos provocar una denegación de servicio (lectura fuera de límites) a través de vectores no especificados. • http://code.google.com/p/chromium/issues/detail?id=95625 • CWE-125: Out-of-bounds Read •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2011-2859
https://notcve.org/view.php?id=CVE-2011-2859
17 Sep 2011 — Google Chrome before 14.0.835.163 uses incorrect permissions for non-gallery pages, which has unspecified impact and attack vectors. Google Chrome antes de v14.0.835.163, usa permisos incorrectos para paginas "non-gallery" algo que tiene un impacto y vectores de ataque no especificados • http://code.google.com/p/chromium/issues/detail?id=93497 • CWE-276: Incorrect Default Permissions •
CVSS: 9.8EPSS: 3%CPEs: 4EXPL: 0CVE-2011-2860
https://notcve.org/view.php?id=CVE-2011-2860
17 Sep 2011 — Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to table styles. Vulnerabilidad de tipo "usar-después-de-liberar" en Google Chrome antes de la v14.0.835.163 permite a atacantes remotos causar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con estilos de tabla. • http://code.google.com/p/chromium/issues/detail?id=93587 • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2011-2861
https://notcve.org/view.php?id=CVE-2011-2861
17 Sep 2011 — Google Chrome before 14.0.835.163 does not properly handle strings in PDF documents, which allows remote attackers to have an unspecified impact via a crafted document that triggers an incorrect read operation. Google Chrome antes de v14.0.835.163, maneja adecuadamente las cadenas en documentos PDF, lo que permite a atacantes remotos tener un impacto no especificado a través de un documento modificado que dispara una operación de lectura incorrecta. • http://code.google.com/p/chromium/issues/detail?id=93596 • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2011-2862
https://notcve.org/view.php?id=CVE-2011-2862
17 Sep 2011 — Google V8, as used in Google Chrome before 14.0.835.163, does not properly restrict access to built-in objects, which has unspecified impact and remote attack vectors. Google V8, como se usa en Google Chrome antes de v14.0.835.163, no restringe adecuadamente el acceso a los objetos incorporados, lo que tiene un impacto no especificado y vectores de ataque remotos. • http://code.google.com/p/chromium/issues/detail?id=93906 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2011-2864
https://notcve.org/view.php?id=CVE-2011-2864
17 Sep 2011 — Google Chrome before 14.0.835.163 does not properly handle Tibetan characters, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors. Google Chrome antes de la v14.0.835.163 no controla correctamente caracteres tibetanos, lo que permite a atacantes remotos provocar una denegación de servicio (lectura fuera de límites) a través de vectores no especificados. • http://code.google.com/p/chromium/issues/detail?id=95563 • CWE-125: Out-of-bounds Read •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2011-2874
https://notcve.org/view.php?id=CVE-2011-2874
17 Sep 2011 — Google Chrome before 14.0.835.163 does not perform an expected pin operation for a self-signed certificate during a session, which has unspecified impact and remote attack vectors. Google Chrome antes de v14.0.835.163 no realiza una operación de pin esperada para un certificado auto-firmado durante una sesión, lo que tiene un impacto no especificado y vectores de ataque remotos. • http://code.google.com/p/chromium/issues/detail?id=95917 • CWE-295: Improper Certificate Validation •