Vulnerabilities > Google > Chrome > 30.112.62.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2014-02-24 | CVE-2013-6652 | Path Traversal vulnerability in Google Chrome Directory traversal vulnerability in sandbox/win/src/named_pipe_dispatcher.cc in Google Chrome before 33.0.1750.117 on Windows allows attackers to bypass intended named-pipe policy restrictions in the sandbox via vectors related to (1) lack of checks for .. | 7.5 |
| 2014-02-05 | CVE-2014-0497 | Integer Underflow (Wrap or Wraparound) vulnerability in multiple products Integer underflow in Adobe Flash Player before 11.7.700.261 and 11.8.x through 12.0.x before 12.0.0.44 on Windows and Mac OS X, and before 11.2.202.336 on Linux, allows remote attackers to execute arbitrary code via unspecified vectors. | 9.8 |
| 2014-01-28 | CVE-2014-1681 | Security vulnerability in Google Chrome Multiple unspecified vulnerabilities in Google Chrome before 32.0.1700.102 have unknown impact and attack vectors, related to 12 "security fixes [that were not] either contributed by external researchers or particularly interesting." | 10.0 |
| 2014-01-28 | CVE-2013-6650 | Improper Input Validation vulnerability in multiple products The StoreBuffer::ExemptPopularPages function in store-buffer.cc in Google V8 before 3.22.24.16, as used in Google Chrome before 32.0.1700.102, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via vectors that trigger incorrect handling of "popular pages." | 7.5 |
| 2014-01-28 | CVE-2013-6649 | Resource Management Errors vulnerability in Google Chrome Use-after-free vulnerability in the RenderSVGImage::paint function in core/rendering/svg/RenderSVGImage.cpp in Blink, as used in Google Chrome before 32.0.1700.102, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a zero-size SVG image. | 7.5 |
| 2014-01-16 | CVE-2013-6643 | Improper Authentication vulnerability in multiple products The OneClickSigninBubbleView::WindowClosing function in browser/ui/views/sync/one_click_signin_bubble_view.cc in Google Chrome before 32.0.1700.76 on Windows and before 32.0.1700.77 on Mac OS X and Linux allows attackers to trigger a sync with an arbitrary Google account by leveraging improper handling of the closing of an untrusted signin confirm dialog. | 7.5 |
| 2014-01-16 | CVE-2013-6642 | Unspecified vulnerability in Google Chrome Google Chrome through 32.0.1700.23 on Android allows remote attackers to spoof the address bar via unspecified vectors. | 5.0 |
| 2013-12-07 | CVE-2013-6640 | Buffer Errors vulnerability in Google Chrome The DehoistArrayIndex function in hydrogen-dehoist.cc (aka hydrogen.cc) in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of service (out-of-bounds read) via JavaScript code that sets a variable to the value of an array element with a crafted index. | 7.5 |
| 2013-12-07 | CVE-2013-6639 | Buffer Errors vulnerability in Google Chrome The DehoistArrayIndex function in hydrogen-dehoist.cc (aka hydrogen.cc) in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via JavaScript code that sets the value of an array element with a crafted index. | 7.5 |
| 2013-12-07 | CVE-2013-6637 | Unspecified vulnerability in Google Chrome Multiple unspecified vulnerabilities in Google Chrome before 31.0.1650.63 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. | 7.5 |