Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google chrome vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-11693
The bufferdata function in WebGL is vulnerable to a buffer overflow with specific graphics drivers on Linux. This could result in malicious content freezing a tab or triggering a potentially exploitable crash. *Note: this issue only occurs on Linux. Other operating systems are un...
Mozilla Firefox
Mozilla Thunderbird
Mozilla Firefox Esr
9.8
CVSSv3
CVE-2016-5179
Chrome OS prior to 53.0.2785.144 allows remote malicious users to execute arbitrary commands at boot.
Google Chrome Os
9.8
CVSSv3
CVE-2014-9654
The Regular Expressions package in International Components for Unicode (ICU) for C/C++ prior to 2014-12-03, as used in Google Chrome prior to 40.0.2214.91, calculates certain values without ensuring that they can be represented in a 24-bit field, which allows remote malicious us...
Google Chrome
Icu-project International Components For Unicode
9.8
CVSSv3
CVE-2013-6647
A use-after-free in AnimationController::endAnimationUpdate in Google Chrome.
Google Chrome -
9.8
CVSSv3
CVE-2016-2362
Fonality (previously trixbox Pro) 12.6 up to and including 14.1i prior to 2016-06-01 has a hardcoded password for the FTP account, which allows remote malicious users to obtain access via a (1) FTP or (2) SSH connection.
Fonality Fonality 12.6
Fonality Fonality 12.8
Fonality Fonality 14.1i
9.8
CVSSv3
CVE-2016-1636
The PendingScript::notifyFinished function in WebKit/Source/core/dom/PendingScript.cpp in Google Chrome prior to 49.0.2623.75 relies on memory-cache information about integrity-check occurrences instead of integrity-check successes, which allows remote malicious users to bypass t...
Google Chrome
9.8
CVSSv3
CVE-2016-1633
Use-after-free vulnerability in Blink, as used in Google Chrome prior to 49.0.2623.75, allows remote malicious users to cause a denial of service or possibly have unspecified other impact via unknown vectors.
Google Chrome
9.8
CVSSv3
CVE-2016-1635
extensions/renderer/render_frame_observer_natives.cc in Google Chrome prior to 49.0.2623.75 does not properly consider object lifetimes and re-entrancy issues during OnDocumentElementCreated handling, which allows remote malicious users to cause a denial of service (use-after-fre...
Google Chrome
9.8
CVSSv3
CVE-2016-2843
Multiple unspecified vulnerabilities in Google V8 prior to 4.9.385.26, as used in Google Chrome prior to 49.0.2623.75, allow malicious users to cause a denial of service or possibly have other impact via unknown vectors.
Google Chrome
Google V8
9.8
CVSSv3
CVE-2016-1639
Use-after-free vulnerability in browser/extensions/api/webrtc_audio_private/webrtc_audio_private_api.cc in the WebRTC Audio Private API implementation in Google Chrome prior to 49.0.2623.75 allows remote malicious users to cause a denial of service or possibly have unspecified ot...
Google Chrome
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22460
CVE-2024-4646
CVE-2024-29212
IMAP
CVE-2023-36672
CVE-2024-34547
command injection
CVE-2024-4651
stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »