Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
chrome os vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2022-0974
Use after free in Splitscreen in Google Chrome on Chrome OS before 99.0.4844.74 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
8.8
CVSSv3
CVE-2022-0808
Use after free in Chrome OS Shell in Google Chrome on Chrome OS before 99.0.4844.51 allowed a remote attacker who convinced a user to engage in a series of user interaction to potentially exploit heap corruption via user interactions.
Google Chrome
8.8
CVSSv3
CVE-2022-0603
Use after free in File Manager in Google Chrome on Chrome OS before 98.0.4758.102 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
8.8
CVSSv3
CVE-2022-0308
Use after free in Data Transfer in Google Chrome on Chrome OS before 97.0.4692.99 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
8.8
CVSSv3
CVE-2022-0098
Use after free in Screen Capture in Google Chrome on Chrome OS before 97.0.4692.71 allowed an attacker who convinced a user to perform specific user gestures to potentially exploit heap corruption via specific user gestures.
Google Chrome
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
8.8
CVSSv3
CVE-2022-0107
Use after free in File Manager API in Google Chrome on Chrome OS before 97.0.4692.71 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
8.8
CVSSv3
CVE-2021-37840
aaPanel up to and including 6.8.12 allows Cross-Site WebSocket Hijacking (CSWH) involving OS commands within WebSocket messages at a ws:// URL for /webssh (the victim must have configured Terminal with at least one host). Successful exploitation depends on the browser used by a p...
Aapanel Aapanel
8.8
CVSSv3
CVE-2021-21204
Use after free in Blink in Google Chrome on OS X before 90.0.4430.72 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
Debian Debian Linux 10.0
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Fedoraproject Fedora 34
8.8
CVSSv3
CVE-2020-16038
Use after free in media in Google Chrome on OS X before 87.0.4280.88 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
8.8
CVSSv3
CVE-2020-15969
Use after free in WebRTC in Google Chrome before 86.0.4240.75 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
Debian Debian Linux 10.0
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Opensuse Backports Sle 15.0
Apple Ipados
Apple Safari
Apple Watchos
Apple Macos
Apple Tvos
Apple Iphone Os
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27842
CVE-2024-30657
CVE-2024-4534
hardcoded
SSRF
CVE-2024-21683
CVE-2024-5364
file upload
CVE-2024-5371
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »