Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
chromium chromium vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-3839
Out of bounds read in Fonts in Google Chrome before 124.0.6367.60 allowed a remote malicious user to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)
Google Chrome
NA
CVE-2024-3840
Insufficient policy enforcement in Site Isolation in Google Chrome before 124.0.6367.60 allowed a remote malicious user to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium)
NA
CVE-2024-3841
Insufficient data validation in Browser Switcher in Google Chrome before 124.0.6367.60 allowed a remote malicious user to inject scripts or HTML into a privileged page via a malicious file. (Chromium security severity: Medium)
NA
CVE-2024-3844
Inappropriate implementation in Extensions in Google Chrome before 124.0.6367.60 allowed a remote malicious user to perform UI spoofing via a crafted Chrome Extension. (Chromium security severity: Low)
NA
CVE-2024-3845
Inappropriate implementation in Networks in Google Chrome before 124.0.6367.60 allowed a remote malicious user to bypass mixed content policy via a crafted HTML page. (Chromium security severity: Low)
NA
CVE-2024-3846
Inappropriate implementation in Prompts in Google Chrome before 124.0.6367.60 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)
NA
CVE-2024-3847
Insufficient policy enforcement in WebUI in Google Chrome before 124.0.6367.60 allowed a remote malicious user to bypass content security policy via a crafted HTML page. (Chromium security severity: Low)
NA
CVE-2024-3843
Insufficient data validation in Downloads in Google Chrome before 124.0.6367.60 allowed a remote malicious user to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)
NA
CVE-2024-3515
Use after free in Dawn in Google Chrome before 123.0.6312.122 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
NA
CVE-2024-3516
Heap buffer overflow in ANGLE in Google Chrome before 123.0.6312.122 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-28995
CVE-2024-36680
CVE-2024-35537
unauthorized
CVE-2024-21518
CVE-2024-37673
cross-site scripting
SSRF
CVE-2024-6241
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »