Vulnerabilities > Google > Chrome

DATE CVE VULNERABILITY TITLE RISK
2024-10-22 CVE-2024-10229 Unspecified vulnerability in Google Chrome
Inappropriate implementation in Extensions in Google Chrome prior to 130.0.6723.69 allowed a remote attacker to bypass site isolation via a crafted Chrome Extension.
network
low complexity
google
8.1
2024-10-22 CVE-2024-10230 Type Confusion vulnerability in Google Chrome
Type Confusion in V8 in Google Chrome prior to 130.0.6723.69 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google CWE-843
8.8
2024-10-22 CVE-2024-10231 Type Confusion vulnerability in Google Chrome
Type Confusion in V8 in Google Chrome prior to 130.0.6723.69 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google CWE-843
8.8
2024-10-15 CVE-2024-9954 Use After Free vulnerability in Google Chrome
Use after free in AI in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google CWE-416
8.8
2024-10-15 CVE-2024-9958 Unspecified vulnerability in Google Chrome
Inappropriate implementation in PictureInPicture in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page.
network
low complexity
google
4.3
2024-10-15 CVE-2024-9962 Unspecified vulnerability in Google Chrome
Inappropriate implementation in Permissions in Google Chrome prior to 130.0.6723.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page.
network
low complexity
google
4.3
2024-10-15 CVE-2024-9963 Unspecified vulnerability in Google Chrome
Insufficient data validation in Downloads in Google Chrome prior to 130.0.6723.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page.
network
low complexity
google
4.3
2024-10-15 CVE-2024-9964 Unspecified vulnerability in Google Chrome
Inappropriate implementation in Payments in Google Chrome prior to 130.0.6723.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted Chrome Extension.
network
low complexity
google
4.3
2024-10-15 CVE-2024-9965 Unspecified vulnerability in Google Chrome
Insufficient data validation in DevTools in Google Chrome on Windows prior to 130.0.6723.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page.
network
low complexity
google
8.8
2024-10-15 CVE-2024-9966 Unspecified vulnerability in Google Chrome
Inappropriate implementation in Navigations in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to bypass content security policy via a crafted HTML page.
network
low complexity
google
5.3