Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
chrome vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-3847
Insufficient policy enforcement in WebUI in Google Chrome before 124.0.6367.60 allowed a remote malicious user to bypass content security policy via a crafted HTML page. (Chromium security severity: Low)
NA
CVE-2024-32003
wn-dusk-plugin (Dusk plugin) is a plugin which integrates Laravel Dusk browser testing into Winter CMS. The Dusk plugin provides some special routes as part of its testing framework to allow a browser environment (such as headless Chrome) to act as a user in the Backend or User p...
1 Github repository
NA
CVE-2024-3157
Out of bounds memory access in Compositing in Google Chrome before 123.0.6312.122 allowed a remote attacker who had compromised the GPU process to potentially perform a sandbox escape via specific UI gestures. (Chromium security severity: High)
NA
CVE-2024-3515
Use after free in Dawn in Google Chrome before 123.0.6312.122 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
NA
CVE-2024-3516
Heap buffer overflow in ANGLE in Google Chrome before 123.0.6312.122 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
NA
CVE-2024-3156
Inappropriate implementation in V8 in Google Chrome before 123.0.6312.105 allowed a remote malicious user to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
Google Chrome
1 Article
NA
CVE-2024-3158
Use after free in Bookmarks in Google Chrome before 123.0.6312.105 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Google Chrome
1 Article
NA
CVE-2024-3159
Out of bounds memory access in V8 in Google Chrome before 123.0.6312.105 allowed a remote malicious user to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High)
Google Chrome
2 Articles
NA
CVE-2024-30491
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Metagauss ProfileGrid.This issue affects ProfileGrid : from n/a up to and including 5.7.8.
1 Github repository
NA
CVE-2024-29891
ZITADEL users can upload their own avatar image and various image types are allowed. Due to a missing check, an attacker could upload HTML and pretend it is an image to gain access to the victim's account in certain scenarios. A possible victim would need to directly open th...
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »