Vulnerabilities > Google > Chrome

DATE CVE VULNERABILITY TITLE RISK
2024-08-06 CVE-2024-7004 Unspecified vulnerability in Google Chrome
Insufficient validation of untrusted input in Safe Browsing in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass discretionary access control via a malicious file.
network
low complexity
google
4.3
2024-08-06 CVE-2024-7005 Unspecified vulnerability in Google Chrome
Insufficient validation of untrusted input in Safe Browsing in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass discretionary access control via a malicious file.
network
low complexity
google
4.3
2024-08-01 CVE-2024-6990 Use of Uninitialized Resource vulnerability in Google Chrome
Uninitialized Use in Dawn in Google Chrome on Android prior to 127.0.6533.88 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.
network
low complexity
google CWE-908
8.8
2024-08-01 CVE-2024-7255 Out-of-bounds Read vulnerability in Google Chrome
Out of bounds read in WebTransport in Google Chrome prior to 127.0.6533.88 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.
network
low complexity
google CWE-125
8.8
2024-07-16 CVE-2019-25154 Unspecified vulnerability in Google Chrome
Inappropriate implementation in iframe in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.
network
low complexity
google
critical
9.6
2024-07-16 CVE-2020-36765 Unspecified vulnerability in Google Chrome
Insufficient policy enforcement in Navigation in Google Chrome prior to 85.0.4183.83 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
network
low complexity
google
6.5
2024-07-16 CVE-2023-7013 Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Chrome
Inappropriate implementation in Compositing in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to potentially spoof security UI via a crafted HTML page.
network
low complexity
google CWE-1021
4.7
2024-07-16 CVE-2024-2884 Out-of-bounds Read vulnerability in Google Chrome
Out of bounds read in V8 in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.
network
low complexity
google CWE-125
6.5
2024-07-16 CVE-2024-3168 Use After Free vulnerability in Google Chrome
Use after free in DevTools in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google CWE-416
8.8
2024-07-16 CVE-2024-3169 Use After Free vulnerability in Google Chrome
Use after free in V8 in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google CWE-416
8.8