Vulnerabilities > Google > Chrome > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-02-19 | CVE-2019-5769 | Improper Input Validation vulnerability in multiple products Incorrect handling of invalid end character position when front rendering in Blink in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2019-02-19 | CVE-2019-5764 | Use After Free vulnerability in multiple products Incorrect pointer management in WebRTC in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2019-02-19 | CVE-2019-5763 | Improper Check for Unusual or Exceptional Conditions vulnerability in multiple products Failure to check error conditions in V8 in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2019-02-19 | CVE-2019-5762 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Inappropriate memory management when caching in PDFium in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. | 8.8 |
2019-02-19 | CVE-2019-5761 | Out-of-bounds Write vulnerability in multiple products Incorrect object lifecycle management in SwiftShader in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2019-02-19 | CVE-2019-5760 | Use After Free vulnerability in multiple products Insufficient checks of pointer validity in WebRTC in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2019-02-19 | CVE-2019-5758 | Out-of-bounds Write vulnerability in multiple products Incorrect object lifecycle management in Blink in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2019-02-19 | CVE-2019-5757 | Incorrect Type Conversion or Cast vulnerability in multiple products An incorrect object type assumption in SVG in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. | 8.8 |
2019-02-19 | CVE-2019-5756 | Use After Free vulnerability in multiple products Inappropriate memory management when caching in PDFium in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. | 8.8 |
2019-02-19 | CVE-2019-5755 | Numeric Errors vulnerability in multiple products Incorrect handling of negative zero in V8 in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. | 8.1 |