CVSS: 10.0EPSS: 0%CPEs: 31EXPL: 0CVE-2011-2171
https://notcve.org/view.php?id=CVE-2011-2171
24 May 2011 — Unspecified vulnerability in the dbugs package in Google Chrome OS before R12 0.12.433.38 Beta has unknown impact and attack vectors. Vulnerabilidad no especificada en el paquete dbugs en Google Chrome OS antes de R12 v0.12.433.38 Beta tiene un impacto y vectores de ataque desconocidos. • http://googlechromereleases.blogspot.com/2011/05/chrome-os-beta-channel-update_16.html •
CVSS: 7.8EPSS: 0%CPEs: 31EXPL: 0CVE-2011-2169
https://notcve.org/view.php?id=CVE-2011-2169
24 May 2011 — Google Chrome OS before R12 0.12.433.38 Beta allows local users to gain privileges by creating a /var/lib/chromeos-aliases.conf file and placing commands in it. Google Chrome sistema operativo antes de R12 v0.12.433.38 Beta permite a usuarios locales obtener privilegios mediante la creación de un directorio /var/lib/ChromeOS-aliases.conf y colocando comandos en ella. • http://googlechromereleases.blogspot.com/2011/05/chrome-os-beta-channel-update_16.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 10.0EPSS: 0%CPEs: 9EXPL: 0CVE-2011-1306
https://notcve.org/view.php?id=CVE-2011-1306
08 Mar 2011 — Unspecified vulnerability in the Scratchpad application in Google Chrome OS before R10 0.10.156.46 Beta has unknown impact and attack vectors. Vulnerabilidad no especificada en la aplicación Scratchpad en Google Chrome OS anterior a R10.0.10.156.46 Beta tiene un impacto y vectores de ataque desconocidos. • http://googlechromereleases.blogspot.com/2011/03/chrome-os-beta-channel-update.html •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2011-1042
https://notcve.org/view.php?id=CVE-2011-1042
18 Feb 2011 — Use-after-free vulnerability in flimflamd in flimflam in Google Chrome OS before 0.9.130.14 Beta allows user-assisted remote attackers to cause a denial of service (daemon crash) by providing the name of a hidden WiFi network that does not respond to connection attempts. Vulnerabilidad uso después de liberación en flimflamd en flimflam en Google Chrome OS antes de v0.9.130.14 beta permite provocar una denegación de servicio (por bloqueo del demonio) a atacantes remotos asistidos por un usuario local, propor... • http://code.google.com/p/chromium-os/issues/detail?id=8871 • CWE-399: Resource Management Errors •
CVSS: 9.3EPSS: 2%CPEs: 7EXPL: 1CVE-2011-0480
https://notcve.org/view.php?id=CVE-2011-0480
14 Jan 2011 — Multiple buffer overflows in vorbis_dec.c in the Vorbis decoder in FFmpeg, as used in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344, allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a crafted WebM file, related to buffers for (1) the channel floor and (2) the channel residue. Múltiples desbordamientos de búfer en el decodificador Vorbis en Google Chrome antes de v8.0.552.237 y Chrome OS antes de v8... • http://article.gmane.org/gmane.comp.video.ffmpeg.devel/122703 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 9.3EPSS: 3%CPEs: 2EXPL: 1CVE-2011-0481
https://notcve.org/view.php?id=CVE-2011-0481
14 Jan 2011 — Buffer overflow in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to PDF shading. Desbordamiento de búfer en Google Chrome antes de v8.0.552.237 y Chrome OS antes de v8.0.552.344 permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con el sombreado en PDFs. • http://code.google.com/p/chromium/issues/detail?id=68170 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 9.3EPSS: 6%CPEs: 2EXPL: 0CVE-2011-0475
https://notcve.org/view.php?id=CVE-2011-0475
14 Jan 2011 — Use-after-free vulnerability in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a PDF document. Vulnerabilidad de uso después de liberación en Google Chrome antes de v8.0.552.237 y Chrome OS antes de v8.0.552.344 permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de un documento PDF. • http://code.google.com/p/chromium/issues/detail?id=67100 • CWE-416: Use After Free •
CVSS: 10.0EPSS: 2%CPEs: 2EXPL: 1CVE-2011-0476
https://notcve.org/view.php?id=CVE-2011-0476
14 Jan 2011 — Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 allow remote attackers to cause a denial of service (stack memory corruption) or possibly have unspecified other impact via a PDF document that triggers an out-of-memory error. Google Chrome antes de v8.0.552.237 y Chrome OS antes de v8.0.552.344 permiten a atacantes remotos provocar una denegación de servicio (por corrupción de memoria de pila) o posiblemente tener un impacto no especificado a través de un documento PDF que provoca un error ... • http://code.google.com/p/chromium/issues/detail?id=67208 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 2%CPEs: 2EXPL: 0CVE-2011-0471
https://notcve.org/view.php?id=CVE-2011-0471
14 Jan 2011 — The node-iteration implementation in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 does not properly handle pointers, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. La implementación de iteración de nodos en Google Chrome antes de v8.0.552.237 y Chrome OS antes de v8.0.552.344 no controla correctamente los punteros, lo que permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impa... • http://code.google.com/p/chromium/issues/detail?id=65764 • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 1%CPEs: 2EXPL: 0CVE-2011-0483
https://notcve.org/view.php?id=CVE-2011-0483
14 Jan 2011 — Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform a cast of an unspecified variable during handling of video, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. Google Chrome antes de v8.0.552.237 y Chrome OS antes de v8.0.552.344 no realiza correctamente la conversión de una variable no especificada durante la manipulación de video, lo que permite provocar a atacantes remotos una denegación de ser... • http://code.google.com/p/chromium/issues/detail?id=68181 • CWE-704: Incorrect Type Conversion or Cast •