NotCVE - vendor:"Google" product:"Chrome" version:"

Page 542 of 3354 results (0.013 seconds)

CVSS: 7.5EPSS: 0%CPEs: 54EXPL: 0

CVE-2012-2896

https://notcve.org/view.php?id=CVE-2012-2896

Integer overflow in the WebGL implementation in Google Chrome before 22.0.1229.79 on Mac OS X allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. Vulnerabilidad de desbordamiento de entero en la implementación WebGL en Google Chrome antes de v22.0.1229.79 en Mac OS X, permite a atacantes remotos causar una denegación de servicio o posiblemente tener otro impacto no especificado a través de vectores desconocidos. • http://googlechromereleases.blogspot.com/2012/09/stable-channel-update_25.html http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00012.html https://code.google.com/p/chromium/issues/detail?id=145544 https://exchange.xforce.ibmcloud.com/vulnerabilities/78831 • CWE-189: Numeric Errors •

CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0

CVE-2012-4907 – Chrome For Android API Exposure

https://notcve.org/view.php?id=CVE-2012-4907

Google Chrome before 18.0.1025308 on Android does not properly restrict access from JavaScript code to Android APIs, which allows remote attackers to have an unspecified impact via a crafted web page. Google Chrome antes de v18.0.1025308 en Android no restringe correctamente acceso desde el código JavaScript a Android API, lo que permite a atacantes remotos tener un impacto no especificado a través de una página web maliciosa. By abusing Java objects exposed to JavaScript, malicious web pages can execute arbitrary commands on Chrome for Android, if the accessibility setting of the device is enabled. Version 18.0.1025308 was released to address this vulnerability. • http://googlechromereleases.blogspot.com/2012/09/chrome-for-android-update.html https://code.google.com/p/chromium/issues/detail?id=137532 • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 1

CVE-2012-4906 – Google Chrome for Android - Multiple 'file::' URL Handler Local Downloaded Content Disclosure Vulnerabilities

https://notcve.org/view.php?id=CVE-2012-4906

Google Chrome before 18.0.1025308 on Android does not properly restrict access to file: URLs, which allows remote attackers to obtain sensitive information via unspecified vectors, as demonstrated by obtaining credential data, a different vulnerability than CVE-2012-4903. Google Chrome antes de v18.0.1025308 en Android no restringe correctamente acceso al archivo: URL, que permite a atacantes remotos obtener información sensible a través de vectores no especificados, como se ha demostrado mediante la obtención de datos de credenciales, una vulnerabilidad diferente a CVE-2012-4903. Chrome for Android suffers from an issue where a malicious application has the ability to steal private information. Version 18.0.1025308 was released to address this vulnerability. • https://www.exploit-db.com/exploits/37793 http://googlechromereleases.blogspot.com/2012/09/chrome-for-android-update.html https://code.google.com/p/chromium/issues/detail?id=144820 • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 1

CVE-2012-4909 – Google Chrome for Android - Local Application Handling Cookie Theft

https://notcve.org/view.php?id=CVE-2012-4909

Google Chrome before 18.0.1025308 on Android allows remote attackers to obtain cookie information via a crafted application. Google Chrome antes de v18.0.1025308 en Android permite a atacantes remotos obtener información de las cookies a través de una aplicación diseñada. Symbolic links can be used for spoofing Content-Type of local files and this enables malicious Android applications the ability to steal Chrome's cookie file. Version 18.0.1025308 was released to address this vulnerability. • https://www.exploit-db.com/exploits/37794 http://googlechromereleases.blogspot.com/2012/09/chrome-for-android-update.html https://code.google.com/p/chromium/issues/detail?id=141889 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1

CVE-2012-4908 – Google Chrome for Android - Same-origin Policy Bypass Local Symlink

https://notcve.org/view.php?id=CVE-2012-4908

Google Chrome before 18.0.1025308 on Android allows remote attackers to bypass the Same Origin Policy and obtain access to local files via vectors involving a symlink. Google Chrome antes de v18.0.1025308 en Android permite a atacantes remotos evitar la política del mismo origen y obtener acceso a archivos locales a través de vectores relacionados con un enlace simbólico. Chrome for Android's Same-Origin Policy for local files (file: URI) can be bypassed by using symbolic links. It results in theft of Chrome's private files by malicious Android applications. Version 18.0.1025308 was released to address this vulnerability. • https://www.exploit-db.com/exploits/37795 http://googlechromereleases.blogspot.com/2012/09/chrome-for-android-update.html https://code.google.com/p/chromium/issues/detail?id=144866 • CWE-264: Permissions, Privileges, and Access Controls •

1...540 541 542 543 544