Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jordi chancel vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2017-5032
PDFium in Google Chrome before 57.0.2987.98 for Windows could be made to increment off the end of a buffer, which allowed a remote malicious user to potentially exploit heap corruption via a crafted PDF file.
Google Chrome
8.8
CVSSv3
CVE-2017-5034
A use after free in PDFium in Google Chrome before 57.0.2987.98 for Linux and Windows allowed a remote malicious user to perform an out of bounds memory read via a crafted PDF file.
Google Chrome
7.8
CVSSv3
CVE-2017-5036
A use after free in PDFium in Google Chrome before 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote malicious user to have an unspecified impact via a crafted PDF file.
Google Chrome
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
6.3
CVSSv3
CVE-2017-5038
Chrome Apps in Google Chrome before 57.0.2987.98 for Linux, Windows, and Mac had a use after free bug in GuestView, which allowed a remote malicious user to perform an out of bounds memory read via a crafted Chrome extension.
Google Chrome
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
7.8
CVSSv3
CVE-2017-5039
A use after free in PDFium in Google Chrome before 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote malicious user to potentially exploit heap corruption via a crafted PDF file.
Google Chrome
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
8.8
CVSSv3
CVE-2017-5043
Chrome Apps in Google Chrome before 57.0.2987.98 for Linux, Windows, and Mac had a use after free bug in GuestView, which allowed a remote malicious user to perform an out of bounds memory read via a crafted Chrome extension.
Google Chrome
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
NA
CVE-2010-0182
The XMLDocument::load function in Mozilla Firefox prior to 3.5.9 and 3.6.x prior to 3.6.2, Thunderbird prior to 3.0.4, and SeaMonkey prior to 2.0.4 does not perform the expected nsIContentPolicy checks during loading of content by XML documents, which allows malicious users to by...
Mozilla Firefox 3.6
Mozilla Firefox 3.5.5
Mozilla Firefox 3.5.6
Mozilla Firefox 3.0.11
Mozilla Firefox 3.0.10
Mozilla Firefox 3.0.3
Mozilla Firefox 3.0.2
Mozilla Firefox 2.0.0.16
Mozilla Firefox 2.0.0.15
Mozilla Firefox 2.0.0.7
Mozilla Firefox 2.0.0.6
Mozilla Firefox 1.5
Mozilla Firefox 1.5.0.4
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5.3
Mozilla Firefox 1.5.0.7
Mozilla Firefox 1.0.6
Mozilla Firefox 1.0.5
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.1
Mozilla Firefox 0.6
Mozilla Firefox 3.5
5.7
CVSSv3
CVE-2017-5042
Cast in Google Chrome before 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android sent cookies to sites discovered via SSDP, which allowed an attacker on the local network segment to initiate connections to arbitrary URLs and observe any plaintext cookies sent.
Google Chrome
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
8.8
CVSSv3
CVE-2017-5030
Incorrect handling of complex species in V8 in Google Chrome before 57.0.2987.98 for Linux, Windows, and Mac and 57.0.2987.108 for Android allowed a remote malicious user to execute arbitrary code via a crafted HTML page.
Google Chrome
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
8.8
CVSSv3
CVE-2017-5031
A use after free in ANGLE in Google Chrome before 57.0.2987.98 for Windows allowed a remote malicious user to perform an out of bounds memory read via a crafted HTML page.
Google Chrome
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »