CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-9120
https://notcve.org/view.php?id=CVE-2024-9120
Use after free in Dawn in Google Chrome on Windows prior to 129.0.6668.70 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) • https://chromereleases.googleblog.com/2024/09/stable-channel-update-for-desktop_24.html https://issues.chromium.org/issues/365254285 • CWE-416: Use After Free •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-7024
https://notcve.org/view.php?id=CVE-2024-7024
Inappropriate implementation in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Low) • https://issues.chromium.org/issues/334120897 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-7023
https://notcve.org/view.php?id=CVE-2024-7023
Insufficient data validation in Updater in Google Chrome prior to 128.0.6537.0 allowed a remote attacker to perform privilege escalation via a malicious file. (Chromium security severity: Medium) • https://issues.chromium.org/issues/341803763 • CWE-20: Improper Input Validation •
CVSS: -EPSS: 0%CPEs: 1EXPL: 0CVE-2018-20072
https://notcve.org/view.php?id=CVE-2018-20072
Insufficient data validation in PDF in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform out of bounds memory access via a crafted PDF file. (Chromium security severity: Low) • https://issues.chromium.org/issues/40093560 •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2021-38023
https://notcve.org/view.php?id=CVE-2021-38023
Use after free in Extensions in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) • https://issues.chromium.org/issues/40056265 • CWE-416: Use After Free •