Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google chrome - vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-4060
Use after free in Dawn in Google Chrome before 124.0.6367.78 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
NA
CVE-2024-4368
Use after free in Dawn in Google Chrome before 124.0.6367.118 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
1 Article
NA
CVE-2024-4331
Use after free in Picture In Picture in Google Chrome before 124.0.6367.118 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
1 Article
NA
CVE-2024-3914
Use after free in V8 in Google Chrome before 124.0.6367.60 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
NA
CVE-2024-3837
Use after free in QUIC in Google Chrome before 124.0.6367.60 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)
Google Chrome
NA
CVE-2024-3838
Inappropriate implementation in Autofill in Google Chrome before 124.0.6367.60 allowed an attacker who convinced a user to install a malicious app to perform UI spoofing via a crafted app. (Chromium security severity: Medium)
Google Chrome
NA
CVE-2024-3839
Out of bounds read in Fonts in Google Chrome before 124.0.6367.60 allowed a remote malicious user to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)
Google Chrome
NA
CVE-2024-3840
Insufficient policy enforcement in Site Isolation in Google Chrome before 124.0.6367.60 allowed a remote malicious user to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium)
NA
CVE-2024-3841
Insufficient data validation in Browser Switcher in Google Chrome before 124.0.6367.60 allowed a remote malicious user to inject scripts or HTML into a privileged page via a malicious file. (Chromium security severity: Medium)
NA
CVE-2024-3843
Insufficient data validation in Downloads in Google Chrome before 124.0.6367.60 allowed a remote malicious user to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »