Vulnerabilities > Google > Chrome > 11.0.696.56
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-06-27 | CVE-2019-5824 | Out-of-bounds Write vulnerability in multiple products Parameter passing error in media in Google Chrome prior to 74.0.3729.131 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2019-06-27 | CVE-2019-5823 | Open Redirect vulnerability in multiple products Insufficient policy enforcement in service workers in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. | 5.4 |
2019-06-27 | CVE-2019-5822 | Inappropriate implementation in Blink in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to bypass same origin policy via a crafted HTML page. | 8.8 |
2019-06-27 | CVE-2019-5821 | Integer Overflow or Wraparound vulnerability in multiple products Integer overflow in PDFium in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. | 8.8 |
2019-06-27 | CVE-2019-5820 | Integer Overflow or Wraparound vulnerability in multiple products Integer overflow in PDFium in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. | 8.8 |
2019-06-27 | CVE-2019-5819 | OS Command Injection vulnerability in multiple products Insufficient data validation in developer tools in Google Chrome on OS X prior to 74.0.3729.108 allowed a local attacker to execute arbitrary code via a crafted string copied to clipboard. | 7.8 |
2019-06-27 | CVE-2019-5818 | Use of Uninitialized Resource vulnerability in multiple products Uninitialized data in media in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted video file. | 6.5 |
2019-06-27 | CVE-2019-5817 | Out-of-bounds Write vulnerability in multiple products Heap buffer overflow in ANGLE in Google Chrome on Windows prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2019-06-27 | CVE-2019-5816 | Improper Control of a Resource Through its Lifetime vulnerability in multiple products Process lifetime issue in Chrome in Google Chrome on Android prior to 74.0.3729.108 allowed a remote attacker to potentially persist an exploited process via a crafted HTML page. | 8.8 |
2019-06-27 | CVE-2019-5814 | Cross-Site Request Forgery (CSRF) vulnerability in multiple products Insufficient policy enforcement in Blink in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to leak cross-origin data via a crafted HTML page. | 6.5 |