Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
chrome os vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2017-5084
Inappropriate implementation in image-burner in Google Chrome OS before 59.0.3071.92 allowed a local malicious user to read local files via dbus-send commands to a BurnImage D-Bus endpoint.
Google Chrome Os
9.3
CVSSv2
CVE-2019-16508
The Imagination Technologies driver for Chrome OS before R74-11895.B, R75 before R75-12105.B, and R76 before R76-12208.0.0 allows malicious users to trigger an Integer Overflow and gain privileges via a malicious application. This occurs because of intentional access for the GPU ...
Google Chrome Os
5.8
CVSSv2
CVE-2017-15397
Inappropriate implementation in ChromeVox in Google Chrome OS before 62.0.3202.74 allowed a remote attacker in a privileged network position to observe or tamper with certain cleartext HTTP requests by leveraging that position.
Google Chrome Os
6.8
CVSSv2
CVE-2016-5169
Format string vulnerability in Google Chrome OS prior to 53.0.2785.103 allows remote malicious users to cause a denial of service or possibly have unspecified other impact via unknown vectors.
Google Chrome Os
10
CVSSv2
CVE-2016-5179
Chrome OS prior to 53.0.2785.144 allows remote malicious users to execute arbitrary commands at boot.
Google Chrome Os
NA
CVE-2022-3051
Heap buffer overflow in Exosphere in Google Chrome on Chrome OS, Lacros before 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interactions.
Google Chrome
Google Linux And Chrome Os -
Fedoraproject Fedora 37
NA
CVE-2022-3052
Heap buffer overflow in Window Manager in Google Chrome on Chrome OS, Lacros before 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interactions.
Google Chrome
Google Linux And Chrome Os -
Fedoraproject Fedora 37
1 Article
4.3
CVSSv2
CVE-2011-3058
Google Chrome prior to 18.0.1025.142 does not properly handle the EUC-JP encoding system, which might allow remote malicious users to conduct cross-site scripting (XSS) attacks via unspecified vectors.
Google Chrome
Apple Iphone Os
Apple Mac Os X
7.5
CVSSv2
CVE-2012-2824
Use-after-free vulnerability in Google Chrome prior to 20.0.1132.43 allows remote malicious users to cause a denial of service or possibly have unspecified other impact via vectors related to SVG painting.
Google Chrome 20.0.1132.37
Google Chrome 20.0.1132.16
Google Chrome 20.0.1132.14
Google Chrome 20.0.1132.22
Google Chrome 20.0.1132.30
Google Chrome 20.0.1132.26
Google Chrome 20.0.1132.2
Google Chrome 20.0.1132.11
Google Chrome 20.0.1132.3
Google Chrome 20.0.1132.25
Google Chrome 20.0.1132.24
Google Chrome 20.0.1132.41
Google Chrome 20.0.1132.32
Google Chrome 20.0.1132.38
Google Chrome 20.0.1132.31
Google Chrome 20.0.1132.8
Google Chrome 20.0.1132.4
Google Chrome 20.0.1132.17
Google Chrome 20.0.1132.7
Google Chrome 20.0.1132.18
Google Chrome 20.0.1132.0
Google Chrome
6.4
CVSSv2
CVE-2014-3180
In kernel/compat.c in the Linux kernel prior to 3.17, as used in Google Chrome OS and other products, there is a possible out-of-bounds read. restart_syscall uses uninitialized data when restarting compat_sys_nanosleep. NOTE: this is disputed because the code path is unreachable
Linux Linux Kernel
Google Chrome Os -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »