Vulnerabilities > Google > Chrome OS > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-09 | CVE-2018-4945 | Incorrect Type Conversion or Cast vulnerability in multiple products Adobe Flash Player versions 29.0.0.171 and earlier have a Type Confusion vulnerability. | 6.8 |
| 2011-05-24 | CVE-2011-2170 | Improper Input Validation vulnerability in Google Chrome OS Google Chrome OS before R12 0.12.433.38 Beta, when Guest mode is enabled, does not prevent changes on the about:flags page, which has unspecified impact and local attack vectors. | 4.4 |
| 2011-02-18 | CVE-2011-1042 | Resource Management Errors vulnerability in Google Chrome OS Use-after-free vulnerability in flimflamd in flimflam in Google Chrome OS before 0.9.130.14 Beta allows user-assisted remote attackers to cause a denial of service (daemon crash) by providing the name of a hidden WiFi network that does not respond to connection attempts. | 4.3 |
| 2011-01-14 | CVE-2011-0483 | Incorrect Type Conversion OR Cast vulnerability in Google Chrome and Chrome OS Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform a cast of an unspecified variable during handling of video, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. | 5.0 |
| 2011-01-14 | CVE-2011-0482 | Incorrect Type Conversion OR Cast vulnerability in Google Chrome and Chrome OS Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform a cast of an unspecified variable during handling of anchors, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted HTML document. | 4.3 |
| 2011-01-14 | CVE-2011-0470 | Multiple Security vulnerability in Google Chrome and Chrome OS Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle extensions notification, which allows remote attackers to cause a denial of service (application crash) via unspecified vectors. | 5.0 |
| 2010-12-22 | CVE-2010-4576 | Null Pointer Dereference vulnerability in Google Chrome and Chrome OS browser/worker_host/message_port_dispatcher.cc in Google Chrome before 8.0.552.224 and Chrome OS before 8.0.552.343 does not properly handle certain postMessage calls, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via crafted JavaScript code that creates a web worker. | 5.0 |
| 2010-12-22 | CVE-2010-4575 | Improper Input Validation vulnerability in Google Chrome OS and Chrome The ThemeInstalledInfoBarDelegate::Observe function in browser/extensions/theme_installed_infobar_delegate.cc in Google Chrome before 8.0.552.224 and Chrome OS before 8.0.552.343 does not properly handle incorrect tab interaction by an extension, which allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted extension. | 4.3 |