NotCVE - vendor:"Google" product:"Chrome Os"

Page 6 of 693 results (0.010 seconds)

CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0

CVE-2022-0603 – Debian Security Advisory 5079-1

https://notcve.org/view.php?id=CVE-2022-0603

21 Feb 2022 — Use after free in File Manager in Google Chrome on Chrome OS prior to 98.0.4758.102 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en File Manager de Google Chrome en el Sistema Operativo Chrome versiones anteriores a 98.0.4758.102, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the wor... • https://chromereleases.googleblog.com/2022/02/stable-channel-update-for-desktop_14.html • CWE-416: Use After Free •

CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0

CVE-2022-0308 – Debian Security Advisory 5054-1

https://notcve.org/view.php?id=CVE-2022-0308

28 Jan 2022 — Use after free in Data Transfer in Google Chrome on Chrome OS prior to 97.0.4692.99 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en Data Transfer en Google Chrome en Chrome OS versiones anteriores a 97.0.4692.99, permitía a un atacante remoto que convenciera a un usuario de realizar una interacción específica con el usuario explotar potencialmente una corrupción de ... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop_19.html • CWE-416: Use After Free •

CVSS: 8.8EPSS: 0%CPEs: 5EXPL: 1

CVE-2022-0107 – Debian Security Advisory 5046-1

https://notcve.org/view.php?id=CVE-2022-0107

28 Jan 2022 — Use after free in File Manager API in Google Chrome on Chrome OS prior to 97.0.4692.71 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en File Manager API en Google Chrome en Chrome OS versiones anteriores a 97.0.4692.71, permitía a un atacante que convenciera a un usuario de instalar una extensión maliciosa explotar potencialmente una corrupción de pila por medio de una página HT... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html • CWE-416: Use After Free •

CVSS: 9.6EPSS: 0%CPEs: 5EXPL: 1

CVE-2021-38013 – Debian Security Advisory 5046-1

https://notcve.org/view.php?id=CVE-2021-38013

23 Dec 2021 — Heap buffer overflow in fingerprint recognition in Google Chrome on ChromeOS prior to 96.0.4664.45 allowed a remote attacker who had compromised a WebUI renderer process to potentially perform a sandbox escape via a crafted HTML page. Un desbordamiento del búfer de la pila en fingerprint recognition en Google Chrome en ChromeOS versiones anteriores a 96.0.4664.45, permitía a un atacante remoto que hubiera comprometido un proceso de renderización de la WebUI llevar a cabo potencialmente un filtrado de sandbo... • https://chromereleases.googleblog.com/2021/11/stable-channel-update-for-desktop.html • CWE-787: Out-of-bounds Write •

CVSS: 7.5EPSS: 0%CPEs: 50EXPL: 1

CVE-2021-34424 – Process memory exposure in Zoom Client and other products

https://notcve.org/view.php?id=CVE-2021-34424

24 Nov 2021 — A vulnerability was discovered in the Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.8.4, Zoom Client for Meetings for Blackberry (for Android and iOS) before version 5.8.1, Zoom Client for Meetings for intune (for Android and iOS) before version 5.8.4, Zoom Client for Meetings for Chrome OS before version 5.0.1, Zoom Rooms for Conference Room (for Android, AndroidBali, macOS, and Windows) before version 5.8.3, Controllers for Zoom Rooms (for Android, iOS, and Window... • https://packetstorm.news/files/id/165419 • CWE-125: Out-of-bounds Read •

CVSS: 9.8EPSS: 1%CPEs: 51EXPL: 1

CVE-2021-34423 – Buffer overflow in Zoom client and other products

https://notcve.org/view.php?id=CVE-2021-34423

24 Nov 2021 — A buffer overflow vulnerability was discovered in Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.8.4, Zoom Client for Meetings for Blackberry (for Android and iOS) before version 5.8.1, Zoom Client for Meetings for intune (for Android and iOS) before version 5.8.4, Zoom Client for Meetings for Chrome OS before version 5.0.1, Zoom Rooms for Conference Room (for Android, AndroidBali, macOS, and Windows) before version 5.8.3, Controllers for Zoom Rooms (for Android, iOS... • https://packetstorm.news/files/id/165417 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •

CVSS: 4.3EPSS: 0%CPEs: 6EXPL: 0

CVE-2021-37964 – Debian Security Advisory 5046-1

https://notcve.org/view.php?id=CVE-2021-37964

08 Oct 2021 — Inappropriate implementation in ChromeOS Networking in Google Chrome on ChromeOS prior to 94.0.4606.54 allowed an attacker with a rogue wireless access point to to potentially carryout a wifi impersonation attack via a crafted ONC file. Una implementación inapropiada en ChromeOS Networking en Google Chrome en ChromeOS versiones anteriores a 94.0.4606.54, permitía a un atacante con un punto de acceso inalámbrico fraudulento llevar a cabo potencialmente un ataque de suplantación de wifi por medio de un archiv... • https://chromereleases.googleblog.com/2021/09/stable-channel-update-for-desktop_21.html •

CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0

CVE-2021-30605

https://notcve.org/view.php?id=CVE-2021-30605

08 Sep 2021 — Inappropriate implementation in the ChromeOS Readiness Tool installer on Windows prior to 1.0.2.0 loosens DCOM access rights on two objects allowing an attacker to potentially bypass discretionary access controls. Una implementación inapropiada en el instalador de ChromeOS Readiness Tool en Windows versiones anteriores a 1.0.2.0, afloja los derechos de acceso de DCOM en dos objetos, permitiendo a un atacante omitir potencialmente los controles de acceso discrecionales • https://bit.ly/37CS6G9 • CWE-287: Improper Authentication •

CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0

CVE-2021-30583 – Gentoo Linux Security Advisory 202201-02

https://notcve.org/view.php?id=CVE-2021-30583

03 Aug 2021 — Insufficient policy enforcement in image handling in iOS in Google Chrome on iOS prior to 92.0.4515.107 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Una aplicación insuficiente de políticas en image handling en iOS en Google Chrome en iOS anterior a versión 92.0.4515.107, permitía a un atacante remoto filtrar datos cross-origin por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the a... • https://chromereleases.googleblog.com/2021/07/stable-channel-update-for-desktop_20.html •

CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 1

CVE-2021-30565 – Gentoo Linux Security Advisory 202201-02

https://notcve.org/view.php?id=CVE-2021-30565

03 Aug 2021 — Out of bounds write in Tab Groups in Google Chrome on Linux and ChromeOS prior to 92.0.4515.107 allowed an attacker who convinced a user to install a malicious extension to perform an out of bounds memory write via a crafted HTML page. Una escritura fuera de límites en Tab Groups de Google Chrome en Linux y ChromeOS anterior a versión 92.0.4515.107, permitía a un atacante que convencía a un usuario de instalar una extensión maliciosa llevar a cabo una escritura fuera de límites en la memoria por medio de un... • https://chromereleases.googleblog.com/2021/07/stable-channel-update-for-desktop_20.html • CWE-787: Out-of-bounds Write •

1...4 5 6 7 8