Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google desktop vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2017-5086
Insufficient Policy Enforcement in Omnibox in Google Chrome before 59.0.3071.86 for Windows and Mac allowed a remote malicious user to perform domain spoofing via IDN homographs in a crafted domain name.
Google Chrome
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
4.3
CVSSv3
CVE-2017-5075
Inappropriate implementation in CSP reporting in Blink in Google Chrome before 59.0.3071.86 for Linux, Windows, and Mac, and 59.0.3071.92 for Android, allowed a remote malicious user to obtain the value of url fragments via a crafted HTML page.
Google Chrome
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
4.3
CVSSv3
CVE-2017-5079
Inappropriate implementation in Blink in Google Chrome before 59.0.3071.86 for Mac, Windows, and Linux, and 59.0.3071.92 for Android, allowed a remote malicious user to display UI on a non attacker controlled tab via a crafted HTML page.
Google Chrome
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
NA
CVE-2010-2297
rendering/FixedTableLayout.cpp in WebCore in WebKit in Google Chrome prior to 5.0.375.70 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via an HTML document that has a large colspan attribute within a table.
Google Chrome
Opensuse Opensuse 11.2
Opensuse Opensuse 11.3
Suse Suse Linux Enterprise Desktop 10
Suse Suse Linux Enterprise Desktop 11
Suse Suse Linux Enterprise Server 10
Suse Suse Linux Enterprise Server 11
NA
CVE-2010-2301
Cross-site scripting (XSS) vulnerability in editing/markup.cpp in WebCore in WebKit in Google Chrome prior to 5.0.375.70 allows remote malicious users to inject arbitrary web script or HTML via vectors related to the node.innerHTML property of a TEXTAREA element. NOTE: this might...
Google Chrome
Opensuse Opensuse 11.2
Opensuse Opensuse 11.3
Suse Suse Linux Enterprise Desktop 10
Suse Suse Linux Enterprise Desktop 11
Suse Suse Linux Enterprise Server 10
Suse Suse Linux Enterprise Server 11
NA
CVE-2010-2302
Use-after-free vulnerability in WebCore in WebKit in Google Chrome prior to 5.0.375.70 allows remote malicious users to cause a denial of service (memory corruption) or possibly execute arbitrary code via vectors involving remote fonts in conjunction with shadow DOM trees, aka rd...
Google Chrome
Opensuse Opensuse 11.2
Opensuse Opensuse 11.3
Suse Suse Linux Enterprise Desktop 10
Suse Suse Linux Enterprise Desktop 11
Suse Suse Linux Enterprise Server 10
Suse Suse Linux Enterprise Server 11
4.3
CVSSv3
CVE-2018-6068
Object lifecycle issue in Chrome Custom Tab in Google Chrome before 65.0.3325.146 allowed a remote malicious user to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
Google Chrome
Redhat Linux Desktop 6.0
Redhat Linux Workstation 6.0
Redhat Linux Server 6.0
Debian Debian Linux 9.0
9.8
CVSSv3
CVE-2010-4203
WebM libvpx (aka the VP8 Codec SDK) prior to 0.9.5, as used in Google Chrome prior to 7.0.517.44, allows remote malicious users to cause a denial of service (memory corruption) or possibly execute arbitrary code via invalid frames.
Google Chrome
Webmproject Libvpx
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
8.8
CVSSv3
CVE-2018-17461
An out of bounds read in PDFium in Google Chrome before 68.0.3440.75 allowed a remote malicious user to perform an out of bounds memory read via a crafted PDF file.
Google Chrome
Debian Debian Linux 9.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
9.6
CVSSv3
CVE-2018-17472
Incorrect handling of googlechrome:// URL scheme on iOS in Intents in Google Chrome before 70.0.3538.67 allowed a remote malicious user to escape the <iframe> sandbox via a crafted HTML page.
Google Chrome
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Debian Debian Linux 9.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »