Vulnerabilities > Google > Chrome > 78.0.3904.80

DATE CVE VULNERABILITY TITLE RISK
2022-11-01 CVE-2022-3304 Unspecified vulnerability in Google Chrome
Use after free in CSS in Google Chrome prior to 106.0.5249.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google
8.8
8.8
2022-11-01 CVE-2022-3370 Use After Free vulnerability in Google Chrome
Use after free in Custom Elements in Google Chrome prior to 106.0.5249.91 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google CWE-416
8.8
8.8
2022-11-01 CVE-2022-3373 Out-of-bounds Write vulnerability in Google Chrome
Out of bounds write in V8 in Google Chrome prior to 106.0.5249.91 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page.
network
low complexity
google CWE-787
8.8
8.8
2022-09-26 CVE-2022-2852 Use After Free vulnerability in multiple products
Use after free in FedCM in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject CWE-416
8.8
8.8
2022-09-26 CVE-2022-2853 Out-of-bounds Write vulnerability in multiple products
Heap buffer overflow in Downloads in Google Chrome on Android prior to 104.0.5112.101 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject CWE-787
8.8
8.8
2022-09-26 CVE-2022-2854 Race Condition vulnerability in multiple products
Use after free in SwiftShader in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject CWE-362
8.8
8.8
2022-09-26 CVE-2022-2855 Use After Free vulnerability in multiple products
Use after free in ANGLE in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject CWE-416
8.8
8.8
2022-09-26 CVE-2022-2856 Improper Input Validation vulnerability in multiple products
Insufficient validation of untrusted input in Intents in Google Chrome on Android prior to 104.0.5112.101 allowed a remote attacker to arbitrarily browse to a malicious website via a crafted HTML page.
network
low complexity
google fedoraproject CWE-20
6.5
6.5
2022-09-26 CVE-2022-2857 Race Condition vulnerability in multiple products
Use after free in Blink in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject CWE-362
8.8
8.8
2022-09-26 CVE-2022-2858 Use After Free vulnerability in multiple products
Use after free in Sign-In Flow in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption via specific UI interaction.
network
low complexity
google fedoraproject CWE-416
8.8
8.8