Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

chrome vulnerabilities and exploits

(subscribe to this query)

NA
CVE-2012-2881
Google Chrome before 22.0.1229.79 does not properly handle plug-ins, which allows remote attackers to cause a denial of service (DOM tree corruption) or possibly have unspecified other impact via unknown vectors....
Google Chrome 22.0.1229.63Google Chrome 22.0.1229.64Google Chrome 22.0.1229.76Google Chrome 22.0.1229.21Google Chrome 22.0.1229.29Google Chrome 22.0.1229.31Google Chrome 22.0.1229.49Google Chrome 22.0.1229.48Google Chrome 22.0.1229.57Google Chrome 22.0.1229.56Google Chrome 22.0.1229.58Google Chrome 22.0.1229.59Google Chrome 22.0.1229.20Google Chrome 22.0.1229.16Google Chrome 22.0.1229.17Google Chrome 22.0.1229.25Google Chrome 22.0.1229.26Google Chrome 22.0.1229.36Google Chrome 22.0.1229.35Google Chrome 22.0.1229.53Google Chrome 22.0.1229.52Google Chrome 22.0.1229.51Google Chrome 22.0.1229.2Google Chrome 22.0.1229.3Google Chrome 22.0.1229.7Google Chrome 22.0.1229.8Google Chrome 22.0.1229.11Google Chrome 22.0.1229.10Google Chrome 22.0.1229.65Google Chrome 22.0.1229.67Google Chrome 22.0.1229.22Google Chrome 22.0.1229.18Google Chrome 22.0.1229.27Google Chrome 22.0.1229.28Google Chrome 22.0.1229.39Google Chrome 22.0.1229.37Google Chrome 22.0.1229.55Google Chrome 22.0.1229.54Google Chrome 22.0.1229.4Google Chrome 22.0.1229.6Google ChromeGoogle Chrome 22.0.1229.60Google Chrome 22.0.1229.62Google Chrome 22.0.1229.12Google Chrome 22.0.1229.14Google Chrome 22.0.1229.23Google Chrome 22.0.1229.24Google Chrome 22.0.1229.33Google Chrome 22.0.1229.32Google Chrome 22.0.1229.50Google Chrome 22.0.1229.9Google Chrome 22.0.1229.0Google Chrome 22.0.1229.1Opensuse Opensuse 12.2Opensuse Opensuse 12.1
NA
CVE-2012-2876
Buffer overflow in the SSE2 optimization functionality in Google Chrome before 22.0.1229.79 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors....
Opensuse Opensuse 12.1Opensuse Opensuse 12.2Google Chrome 22.0.1229.67Google Chrome 22.0.1229.58Google Chrome 22.0.1229.18Google Chrome 22.0.1229.20Google ChromeGoogle Chrome 22.0.1229.62Google Chrome 22.0.1229.76Google Chrome 22.0.1229.12Google Chrome 22.0.1229.14Google Chrome 22.0.1229.23Google Chrome 22.0.1229.24Google Chrome 22.0.1229.49Google Chrome 22.0.1229.32Google Chrome 22.0.1229.57Google Chrome 22.0.1229.50Google Chrome 22.0.1229.9Google Chrome 22.0.1229.1Google Chrome 22.0.1229.11Google Chrome 22.0.1229.63Google Chrome 22.0.1229.64Google Chrome 22.0.1229.65Google Chrome 22.0.1229.21Google Chrome 22.0.1229.22Google Chrome 22.0.1229.29Google Chrome 22.0.1229.31Google Chrome 22.0.1229.48Google Chrome 22.0.1229.39Google Chrome 22.0.1229.56Google Chrome 22.0.1229.55Google Chrome 22.0.1229.7Google Chrome 22.0.1229.8Google Chrome 22.0.1229.10Google Chrome 22.0.1229.59Google Chrome 22.0.1229.60Google Chrome 22.0.1229.16Google Chrome 22.0.1229.17Google Chrome 22.0.1229.25Google Chrome 22.0.1229.26Google Chrome 22.0.1229.35Google Chrome 22.0.1229.33Google Chrome 22.0.1229.52Google Chrome 22.0.1229.51Google Chrome 22.0.1229.2Google Chrome 22.0.1229.3Google Chrome 22.0.1229.0Google Chrome 22.0.1229.27Google Chrome 22.0.1229.28Google Chrome 22.0.1229.37Google Chrome 22.0.1229.36Google Chrome 22.0.1229.54Google Chrome 22.0.1229.53Google Chrome 22.0.1229.4Google Chrome 22.0.1229.6
NA
CVE-2012-2899
Google Chrome before 21.0.1180.82 on iOS makes certain incorrect calls to WebView methods that trigger use of an applewebdata: URL, which allows remote attackers to bypass the Same Origin Policy and conduct Universal XSS (UXSS) attacks via vectors involving the document.write...
Google ChromeGoogle Chrome 21.0.1180.80Google Chrome 21.0.1180.79Google Chrome 21.0.1180.63Google Chrome 21.0.1180.62Google Chrome 21.0.1180.61Google Chrome 21.0.1180.60Google Chrome 21.0.1180.59Google Chrome 21.0.1180.41Google Chrome 21.0.1180.39Google Chrome 21.0.1180.38Google Chrome 21.0.1180.37Google Chrome 21.0.1180.77Google Chrome 21.0.1180.75Google Chrome 21.0.1180.70Google Chrome 21.0.1180.68Google Chrome 21.0.1180.57Google Chrome 21.0.1180.55Google Chrome 21.0.1180.48Google Chrome 21.0.1180.46Google Chrome 21.0.1180.36Google Chrome 21.0.1180.34Google Chrome 21.0.1180.32Google Chrome 21.0.1180.74Google Chrome 21.0.1180.73Google Chrome 21.0.1180.72Google Chrome 21.0.1180.71Google Chrome 21.0.1180.53Google Chrome 21.0.1180.52Google Chrome 21.0.1180.51Google Chrome 21.0.1180.50Google Chrome 21.0.1180.31Google Chrome 21.0.1180.2Google Chrome 21.0.1180.1Google Chrome 21.0.1180.0Google Chrome 21.0.1180.78Google Chrome 21.0.1180.76Google Chrome 21.0.1180.69Google Chrome 21.0.1180.64Google Chrome 21.0.1180.56Google Chrome 21.0.1180.54Google Chrome 21.0.1180.49Google Chrome 21.0.1180.47Google Chrome 21.0.1180.35Google Chrome 21.0.1180.33
NA
CVE-2013-2868
common/extensions/sync_helper.cc in Google Chrome before 28.0.1500.71 proceeds with sync operations for NPAPI extensions without checking for a certain plugin permission setting, which might allow remote attackers to trigger unwanted extension changes via unspecified vectors....
Debian Debian Linux 7.0Google Chrome 28.0.1500.66Google Chrome 28.0.1500.64Google Chrome 28.0.1500.54Google Chrome 28.0.1500.53Google Chrome 28.0.1500.46Google Chrome 28.0.1500.45Google Chrome 28.0.1500.38Google Chrome 28.0.1500.37Google Chrome 28.0.1500.28Google Chrome 28.0.1500.27Google Chrome 28.0.1500.20Google Chrome 28.0.1500.19Google Chrome 28.0.1500.12Google Chrome 28.0.1500.11Google Chrome 28.0.1500.2Google Chrome 28.0.1500.0Google ChromeGoogle Chrome 28.0.1500.68Google Chrome 28.0.1500.59Google Chrome 28.0.1500.58Google Chrome 28.0.1500.56Google Chrome 28.0.1500.48Google Chrome 28.0.1500.47Google Chrome 28.0.1500.40Google Chrome 28.0.1500.39Google Chrome 28.0.1500.31Google Chrome 28.0.1500.29Google Chrome 28.0.1500.22Google Chrome 28.0.1500.21Google Chrome 28.0.1500.14Google Chrome 28.0.1500.13Google Chrome 28.0.1500.4Google Chrome 28.0.1500.3Google Chrome 28.0.1500.63Google Chrome 28.0.1500.62Google Chrome 28.0.1500.52Google Chrome 28.0.1500.51Google Chrome 28.0.1500.44Google Chrome 28.0.1500.43Google Chrome 28.0.1500.36Google Chrome 28.0.1500.35Google Chrome 28.0.1500.26Google Chrome 28.0.1500.25Google Chrome 28.0.1500.18Google Chrome 28.0.1500.17Google Chrome 28.0.1500.10Google Chrome 28.0.1500.9Google Chrome 28.0.1500.61Google Chrome 28.0.1500.60Google Chrome 28.0.1500.50Google Chrome 28.0.1500.49Google Chrome 28.0.1500.42Google Chrome 28.0.1500.41Google Chrome 28.0.1500.34Google Chrome 28.0.1500.33Google Chrome 28.0.1500.32Google Chrome 28.0.1500.24Google Chrome 28.0.1500.23Google Chrome 28.0.1500.16Google Chrome 28.0.1500.15Google Chrome 28.0.1500.8Google Chrome 28.0.1500.6Google Chrome 28.0.1500.5
NA
CVE-2013-2878
Google Chrome before 28.0.1500.71 allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to the handling of text....
Google ChromeGoogle Chrome 28.0.1500.60Google Chrome 28.0.1500.59Google Chrome 28.0.1500.58Google Chrome 28.0.1500.49Google Chrome 28.0.1500.48Google Chrome 28.0.1500.41Google Chrome 28.0.1500.68Google Chrome 28.0.1500.66Google Chrome 28.0.1500.56Google Chrome 28.0.1500.54Google Chrome 28.0.1500.47Google Chrome 28.0.1500.46Google Chrome 28.0.1500.39Google Chrome 28.0.1500.38Google Chrome 28.0.1500.29Google Chrome 28.0.1500.28Google Chrome 28.0.1500.21Google Chrome 28.0.1500.20Google Chrome 28.0.1500.13Google Chrome 28.0.1500.12Google Chrome 28.0.1500.3Google Chrome 28.0.1500.2Google Chrome 28.0.1500.62Google Chrome 28.0.1500.61Google Chrome 28.0.1500.51Google Chrome 28.0.1500.50Google Chrome 28.0.1500.43Google Chrome 28.0.1500.42Google Chrome 28.0.1500.35Google Chrome 28.0.1500.34Google Chrome 28.0.1500.33Google Chrome 28.0.1500.25Google Chrome 28.0.1500.24Google Chrome 28.0.1500.17Google Chrome 28.0.1500.16Google Chrome 28.0.1500.8Google Chrome 28.0.1500.6Google Chrome 28.0.1500.40Google Chrome 28.0.1500.32Google Chrome 28.0.1500.31Google Chrome 28.0.1500.23Google Chrome 28.0.1500.22Google Chrome 28.0.1500.15Google Chrome 28.0.1500.14Google Chrome 28.0.1500.5Google Chrome 28.0.1500.4Google Chrome 28.0.1500.64Google Chrome 28.0.1500.63Google Chrome 28.0.1500.53Google Chrome 28.0.1500.52Google Chrome 28.0.1500.45Google Chrome 28.0.1500.44Google Chrome 28.0.1500.37Google Chrome 28.0.1500.36Google Chrome 28.0.1500.27Google Chrome 28.0.1500.26Google Chrome 28.0.1500.19Google Chrome 28.0.1500.18Google Chrome 28.0.1500.11Google Chrome 28.0.1500.10Google Chrome 28.0.1500.9Google Chrome 28.0.1500.0Debian Debian Linux 7.0
NA
CVE-2013-2873
Use-after-free vulnerability in Google Chrome before 28.0.1500.71 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a 404 HTTP status code during the loading of resources....
Debian Debian Linux 7.0Google Chrome 28.0.1500.63Google Chrome 28.0.1500.62Google Chrome 28.0.1500.53Google Chrome 28.0.1500.52Google Chrome 28.0.1500.44Google Chrome 28.0.1500.43Google Chrome 28.0.1500.36Google Chrome 28.0.1500.35Google Chrome 28.0.1500.27Google Chrome 28.0.1500.26Google Chrome 28.0.1500.18Google Chrome 28.0.1500.17Google Chrome 28.0.1500.10Google Chrome 28.0.1500.9Google Chrome 28.0.1500.0Google Chrome 28.0.1500.66Google Chrome 28.0.1500.64Google Chrome 28.0.1500.56Google Chrome 28.0.1500.54Google Chrome 28.0.1500.46Google Chrome 28.0.1500.45Google Chrome 28.0.1500.38Google Chrome 28.0.1500.37Google Chrome 28.0.1500.29Google Chrome 28.0.1500.28Google Chrome 28.0.1500.20Google Chrome 28.0.1500.19Google Chrome 28.0.1500.12Google Chrome 28.0.1500.11Google Chrome 28.0.1500.3Google Chrome 28.0.1500.2Google Chrome 28.0.1500.61Google Chrome 28.0.1500.60Google Chrome 28.0.1500.51Google Chrome 28.0.1500.50Google Chrome 28.0.1500.42Google Chrome 28.0.1500.41Google Chrome 28.0.1500.34Google Chrome 28.0.1500.33Google Chrome 28.0.1500.25Google Chrome 28.0.1500.24Google Chrome 28.0.1500.23Google Chrome 28.0.1500.16Google Chrome 28.0.1500.15Google Chrome 28.0.1500.8Google Chrome 28.0.1500.6Google ChromeGoogle Chrome 28.0.1500.68Google Chrome 28.0.1500.59Google Chrome 28.0.1500.58Google Chrome 28.0.1500.49Google Chrome 28.0.1500.48Google Chrome 28.0.1500.47Google Chrome 28.0.1500.40Google Chrome 28.0.1500.39Google Chrome 28.0.1500.32Google Chrome 28.0.1500.31Google Chrome 28.0.1500.22Google Chrome 28.0.1500.21Google Chrome 28.0.1500.14Google Chrome 28.0.1500.13Google Chrome 28.0.1500.5Google Chrome 28.0.1500.4
NA
CVE-2013-2871
Use-after-free vulnerability in Google Chrome before 28.0.1500.71 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of input....
Google Chrome 28.0.1500.64Google Chrome 28.0.1500.63Google Chrome 28.0.1500.54Google Chrome 28.0.1500.53Google Chrome 28.0.1500.45Google Chrome 28.0.1500.44Google Chrome 28.0.1500.37Google Chrome 28.0.1500.36Google Chrome 28.0.1500.28Google Chrome 28.0.1500.27Google Chrome 28.0.1500.26Google Chrome 28.0.1500.19Google Chrome 28.0.1500.18Google Chrome 28.0.1500.11Google Chrome 28.0.1500.10Google Chrome 28.0.1500.0Google ChromeGoogle Chrome 28.0.1500.60Google Chrome 28.0.1500.59Google Chrome 28.0.1500.49Google Chrome 28.0.1500.48Google Chrome 28.0.1500.41Google Chrome 28.0.1500.40Google Chrome 28.0.1500.33Google Chrome 28.0.1500.32Google Chrome 28.0.1500.23Google Chrome 28.0.1500.22Google Chrome 28.0.1500.15Google Chrome 28.0.1500.14Google Chrome 28.0.1500.6Google Chrome 28.0.1500.5Google Chrome 28.0.1500.68Google Chrome 28.0.1500.66Google Chrome 28.0.1500.58Google Chrome 28.0.1500.56Google Chrome 28.0.1500.47Google Chrome 28.0.1500.46Google Chrome 28.0.1500.39Google Chrome 28.0.1500.38Google Chrome 28.0.1500.31Google Chrome 28.0.1500.29Google Chrome 28.0.1500.21Google Chrome 28.0.1500.20Google Chrome 28.0.1500.13Google Chrome 28.0.1500.12Google Chrome 28.0.1500.4Google Chrome 28.0.1500.3Google Chrome 28.0.1500.2Google Chrome 28.0.1500.62Google Chrome 28.0.1500.61Google Chrome 28.0.1500.52Google Chrome 28.0.1500.51Google Chrome 28.0.1500.50Google Chrome 28.0.1500.43Google Chrome 28.0.1500.42Google Chrome 28.0.1500.35Google Chrome 28.0.1500.34Google Chrome 28.0.1500.25Google Chrome 28.0.1500.24Google Chrome 28.0.1500.17Google Chrome 28.0.1500.16Google Chrome 28.0.1500.9Google Chrome 28.0.1500.8
NA
CVE-2014-3178
Use-after-free vulnerability in core/dom/Node.cpp in Blink, as used in Google Chrome before 37.0.2062.120, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper handling of render-tree inconsistencies....
Google Chrome 37.0.2062.0Google Chrome 37.0.2062.1Google Chrome 37.0.2062.17Google Chrome 37.0.2062.18Google Chrome 37.0.2062.24Google Chrome 37.0.2062.25Google Chrome 37.0.2062.31Google Chrome 37.0.2062.32Google Chrome 37.0.2062.43Google Chrome 37.0.2062.44Google Chrome 37.0.2062.50Google Chrome 37.0.2062.51Google Chrome 37.0.2062.58Google Chrome 37.0.2062.59Google Chrome 37.0.2062.66Google Chrome 37.0.2062.67Google Chrome 37.0.2062.73Google Chrome 37.0.2062.74Google Chrome 37.0.2062.14Google Chrome 37.0.2062.15Google Chrome 37.0.2062.16Google Chrome 37.0.2062.22Google Chrome 37.0.2062.23Google Chrome 37.0.2062.3Google Chrome 37.0.2062.30Google Chrome 37.0.2062.37Google Chrome 37.0.2062.39Google Chrome 37.0.2062.4Google Chrome 37.0.2062.49Google Chrome 37.0.2062.5Google Chrome 37.0.2062.56Google Chrome 37.0.2062.57Google Chrome 37.0.2062.64Google Chrome 37.0.2062.65Google Chrome 37.0.2062.10Google Chrome 37.0.2062.11Google Chrome 37.0.2062.19Google Chrome 37.0.2062.2Google Chrome 37.0.2062.26Google Chrome 37.0.2062.27Google Chrome 37.0.2062.33Google Chrome 37.0.2062.34Google Chrome 37.0.2062.45Google Chrome 37.0.2062.46Google Chrome 37.0.2062.52Google Chrome 37.0.2062.53Google Chrome 37.0.2062.6Google Chrome 37.0.2062.60Google Chrome 37.0.2062.68Google Chrome 37.0.2062.69Google Chrome 37.0.2062.75Google Chrome 37.0.2062.76Google Chrome 37.0.2062.9Google Chrome 37.0.2062.90Google Chrome 37.0.2062.91Google Chrome 37.0.2062.99Google Chrome 37.0.2062.100Google Chrome 37.0.2062.81Google Chrome 37.0.2062.89Google Chrome 37.0.2062.96Google Chrome 37.0.2062.97Google Chrome 37.0.2062.71Google Chrome 37.0.2062.72Google Chrome 37.0.2062.8Google Chrome 37.0.2062.80Google Chrome 37.0.2062.94Google Chrome 37.0.2062.95Google Chrome 37.0.2062.12Google Chrome 37.0.2062.13Google Chrome 37.0.2062.20Google Chrome 37.0.2062.21Google Chrome 37.0.2062.28Google Chrome 37.0.2062.29Google Chrome 37.0.2062.35Google Chrome 37.0.2062.36Google Chrome 37.0.2062.47Google Chrome 37.0.2062.48Google Chrome 37.0.2062.54Google Chrome 37.0.2062.55Google Chrome 37.0.2062.61Google Chrome 37.0.2062.62Google Chrome 37.0.2062.63Google Chrome 37.0.2062.7Google Chrome 37.0.2062.70Google Chrome 37.0.2062.77Google Chrome 37.0.2062.78Google Chrome 37.0.2062.92Google Chrome 37.0.2062.93Google Chrome 37.0.2062.113
NA
CVE-2013-0924
The extension functionality in Google Chrome before 26.0.1410.43 does not verify that use of the permissions API is consistent with file permissions, which has unspecified impact and attack vectors....
Google ChromeGoogle Chrome 26.0.1410.35Google Chrome 26.0.1410.34Google Chrome 26.0.1410.26Google Chrome 26.0.1410.25Google Chrome 26.0.1410.18Google Chrome 26.0.1410.17Google Chrome 26.0.1410.9Google Chrome 26.0.1410.8Google Chrome 26.0.1410.7Google Chrome 26.0.1410.0Google Chrome 26.0.1410.39Google Chrome 26.0.1410.38Google Chrome 26.0.1410.30Google Chrome 26.0.1410.29Google Chrome 26.0.1410.22Google Chrome 26.0.1410.21Google Chrome 26.0.1410.14Google Chrome 26.0.1410.12Google Chrome 26.0.1410.4Google Chrome 26.0.1410.3Google Chrome 26.0.1410.37Google Chrome 26.0.1410.36Google Chrome 26.0.1410.28Google Chrome 26.0.1410.27Google Chrome 26.0.1410.20Google Chrome 26.0.1410.19Google Chrome 26.0.1410.11Google Chrome 26.0.1410.10Google Chrome 26.0.1410.2Google Chrome 26.0.1410.1Google Chrome 26.0.1410.41Google Chrome 26.0.1410.40Google Chrome 26.0.1410.33Google Chrome 26.0.1410.32Google Chrome 26.0.1410.31Google Chrome 26.0.1410.24Google Chrome 26.0.1410.23Google Chrome 26.0.1410.16Google Chrome 26.0.1410.15Google Chrome 26.0.1410.6Google Chrome 26.0.1410.5
NA
CVE-2013-0922
Google Chrome before 26.0.1410.43 does not properly restrict brute-force access attempts against web sites that require HTTP Basic Authentication, which has unspecified impact and attack vectors....
Google Chrome 26.0.1410.39Google Chrome 26.0.1410.38Google Chrome 26.0.1410.30Google Chrome 26.0.1410.29Google Chrome 26.0.1410.22Google Chrome 26.0.1410.21Google Chrome 26.0.1410.14Google Chrome 26.0.1410.12Google Chrome 26.0.1410.4Google Chrome 26.0.1410.3Google Chrome 26.0.1410.37Google Chrome 26.0.1410.36Google Chrome 26.0.1410.28Google Chrome 26.0.1410.27Google Chrome 26.0.1410.20Google Chrome 26.0.1410.19Google Chrome 26.0.1410.11Google Chrome 26.0.1410.10Google Chrome 26.0.1410.2Google Chrome 26.0.1410.1Google Chrome 26.0.1410.41Google Chrome 26.0.1410.40Google Chrome 26.0.1410.32Google Chrome 26.0.1410.31Google Chrome 26.0.1410.24Google Chrome 26.0.1410.23Google Chrome 26.0.1410.16Google Chrome 26.0.1410.15Google Chrome 26.0.1410.6Google Chrome 26.0.1410.5Google ChromeGoogle Chrome 26.0.1410.35Google Chrome 26.0.1410.34Google Chrome 26.0.1410.33Google Chrome 26.0.1410.26Google Chrome 26.0.1410.25Google Chrome 26.0.1410.18Google Chrome 26.0.1410.17Google Chrome 26.0.1410.9Google Chrome 26.0.1410.8Google Chrome 26.0.1410.7Google Chrome 26.0.1410.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middleremoteCVE-2022-27596CVE-2022-44644CVE-2022-34403CVE-2022-28331CVE-2022-45435privilege escalationCVE-2022-31704
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook