Vulnerabilities > Google > Chrome > 37.0.2062.31

DATE CVE VULNERABILITY TITLE RISK
2019-11-25 CVE-2019-5857 Out-of-bounds Write vulnerability in Google Chrome
Inappropriate implementation in JavaScript in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page.
network
low complexity
google CWE-787
6.5
2019-11-25 CVE-2019-5856 Improper Input Validation vulnerability in Google Chrome
Insufficient policy enforcement in storage in Google Chrome prior to 76.0.3809.87 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page.
network
low complexity
google CWE-20
8.8
2019-11-25 CVE-2019-5855 Integer Overflow or Wraparound vulnerability in Google Chrome
Integer overflow in PDFium in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.
network
low complexity
google CWE-190
6.5
2019-11-25 CVE-2019-5854 Integer Overflow or Wraparound vulnerability in Google Chrome
Integer overflow in PDFium in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.
network
low complexity
google CWE-190
8.8
2019-11-25 CVE-2019-5853 Incorrect Calculation vulnerability in Google Chrome
Inappropriate implementation in JavaScript in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google CWE-682
8.8
2019-11-25 CVE-2019-5852 Improper Input Validation vulnerability in Google Chrome
Inappropriate implementation in JavaScript in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.
network
low complexity
google CWE-20
6.5
2019-11-25 CVE-2019-5851 Use After Free vulnerability in Google Chrome
Use after free in WebAudio in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google CWE-416
8.8
2019-11-25 CVE-2019-5850 Use After Free vulnerability in Google Chrome
Use after free in offline mode in Google Chrome prior to 76.0.3809.87 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
network
low complexity
google CWE-416
critical
9.6
2019-11-25 CVE-2019-5849 Out-of-bounds Read vulnerability in Google Chrome
Out of bounds read in Skia in Google Chrome prior to 75.0.3770.80 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.
network
low complexity
google CWE-125
8.1
2019-11-25 CVE-2019-5848 Cleartext Storage of Sensitive Information vulnerability in Google Chrome
Incorrect font handling in autofill in Google Chrome prior to 75.0.3770.142 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.
network
low complexity
google CWE-312
6.5