Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
chrome vulnerabilities and exploits
(subscribe to this query)
9.6
CVSSv3
CVE-2022-0097
Inappropriate implementation in DevTools in Google Chrome before 97.0.4692.71 allowed an attacker who convinced a user to install a malicious extension to to potentially allow extension to escape the sandbox via a crafted HTML page.
Google Chrome
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
9.6
CVSSv3
CVE-2021-38013
Heap buffer overflow in fingerprint recognition in Google Chrome on ChromeOS before 96.0.4664.45 allowed a remote attacker who had compromised a WebUI renderer process to potentially perform a sandbox escape via a crafted HTML page.
Google Chrome
Fedoraproject Fedora 34
Debian Debian Linux 10.0
Debian Debian Linux 11.0
9.6
CVSSv3
CVE-2021-43905
Microsoft Office app Remote Code Execution Vulnerability
Microsoft Office
1 Article
9.6
CVSSv3
CVE-2021-38002
Use after free in Web Transport in Google Chrome before 95.0.4638.69 allowed a remote malicious user to potentially perform a sandbox escape via a crafted HTML page.
Google Chrome
Fedoraproject Fedora 34
Debian Debian Linux 10.0
Debian Debian Linux 11.0
9.6
CVSSv3
CVE-2020-6492
Use after free in ANGLE in Google Chrome before 83.0.4103.97 allowed a remote malicious user to potentially perform a sandbox escape via a crafted HTML page.
Google Chrome
1 Article
9.6
CVSSv3
CVE-2021-37981
Heap buffer overflow in Skia in Google Chrome before 95.0.4638.54 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
Google Chrome
Debian Debian Linux 10.0
Debian Debian Linux 11.0
9.6
CVSSv3
CVE-2021-37973
Use after free in Portals in Google Chrome before 94.0.4606.61 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
Google Chrome
Fedoraproject Fedora 33
Fedoraproject Fedora 35
Debian Debian Linux 10.0
Debian Debian Linux 11.0
1 Github repository
1 Article
9.6
CVSSv3
CVE-2021-30633
Use after free in Indexed DB API in Google Chrome before 93.0.4577.82 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
Google Chrome
Fedoraproject Fedora 33
Fedoraproject Fedora 35
1 Article
9.6
CVSSv3
CVE-2021-30571
Insufficient policy enforcement in DevTools in Google Chrome before 92.0.4515.107 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted HTML page.
Google Chrome
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Fedoraproject Fedora 35
9.6
CVSSv3
CVE-2021-21201
Use after free in permissions in Google Chrome before 90.0.4430.72 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
Google Chrome
Debian Debian Linux 10.0
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Fedoraproject Fedora 34
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »