Vulnerabilities > Google > Chrome > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-12 | CVE-2024-11110 | Unspecified vulnerability in Google Chrome Inappropriate implementation in Extensions in Google Chrome prior to 131.0.6778.69 allowed a remote attacker to bypass site isolation via a crafted Chrome Extension. | 6.5 |
| 2024-11-12 | CVE-2024-11111 | Unspecified vulnerability in Google Chrome Inappropriate implementation in Autofill in Google Chrome prior to 131.0.6778.69 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. | 4.3 |
| 2024-11-12 | CVE-2024-11116 | Unspecified vulnerability in Google Chrome Inappropriate implementation in Blink in Google Chrome prior to 131.0.6778.69 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. | 4.3 |
| 2024-11-12 | CVE-2024-11117 | Unspecified vulnerability in Google Chrome Inappropriate implementation in FileSystem in Google Chrome prior to 131.0.6778.69 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. | 4.3 |
| 2024-10-15 | CVE-2024-9958 | Unspecified vulnerability in Google Chrome Inappropriate implementation in PictureInPicture in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. | 4.3 |
| 2024-10-15 | CVE-2024-9962 | Unspecified vulnerability in Google Chrome Inappropriate implementation in Permissions in Google Chrome prior to 130.0.6723.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. | 4.3 |
| 2024-10-15 | CVE-2024-9963 | Unspecified vulnerability in Google Chrome Insufficient data validation in Downloads in Google Chrome prior to 130.0.6723.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. | 4.3 |
| 2024-10-15 | CVE-2024-9964 | Unspecified vulnerability in Google Chrome Inappropriate implementation in Payments in Google Chrome prior to 130.0.6723.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted Chrome Extension. | 4.3 |
| 2024-10-15 | CVE-2024-9966 | Unspecified vulnerability in Google Chrome Inappropriate implementation in Navigations in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to bypass content security policy via a crafted HTML page. | 5.3 |
| 2024-09-23 | CVE-2023-7281 | Unspecified vulnerability in Google Chrome Inappropriate implementation in Compositing in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to perform UI spoofing via a crafted HTML page. | 4.3 |