Vulnerabilities > Google > Chrome

DATE CVE VULNERABILITY TITLE RISK
2019-11-25 CVE-2019-5852 Improper Input Validation vulnerability in Google Chrome
Inappropriate implementation in JavaScript in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.
network
low complexity
google CWE-20
6.5
2019-11-25 CVE-2019-5851 Use After Free vulnerability in Google Chrome
Use after free in WebAudio in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google CWE-416
8.8
2019-11-25 CVE-2019-5850 Use After Free vulnerability in Google Chrome
Use after free in offline mode in Google Chrome prior to 76.0.3809.87 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
network
low complexity
google CWE-416
critical
9.6
2019-11-25 CVE-2019-5849 Out-of-bounds Read vulnerability in Google Chrome
Out of bounds read in Skia in Google Chrome prior to 75.0.3770.80 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.
network
low complexity
google CWE-125
8.1
2019-11-25 CVE-2019-5848 Cleartext Storage of Sensitive Information vulnerability in Google Chrome
Incorrect font handling in autofill in Google Chrome prior to 75.0.3770.142 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.
network
low complexity
google CWE-312
6.5
2019-11-25 CVE-2019-5847 Out-of-bounds Write vulnerability in Google Chrome
Inappropriate implementation in JavaScript in Google Chrome prior to 75.0.3770.142 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google CWE-787
6.5
2019-11-25 CVE-2019-5842 Use After Free vulnerability in Google Chrome
Use after free in Blink in Google Chrome prior to 75.0.3770.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google CWE-416
6.5
2019-11-25 CVE-2019-13724 Out-of-bounds Write vulnerability in Google Chrome
Out of bounds memory access in WebBluetooth in Google Chrome prior to 78.0.3904.108 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google CWE-787
8.8
2019-11-25 CVE-2019-13723 Use After Free vulnerability in multiple products
Use after free in WebBluetooth in Google Chrome prior to 78.0.3904.108 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject opensuse redhat CWE-416
8.8
2019-11-25 CVE-2019-13721 Use After Free vulnerability in Google Chrome
Use after free in PDFium in Google Chrome prior to 78.0.3904.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google CWE-416
8.8