Google Chrome vulnerabilities
4,008 known vulnerabilities affecting google/chrome.
Total CVEs
4,008
CISA KEV
74
actively exploited
Public exploits
63
Exploited in wild
65
Severity breakdown
CRITICAL298HIGH2025MEDIUM1626LOW17UNKNOWN42
Vulnerabilities
Page 142 of 201
CVE-2015-8480CRITICALCVSS 10.0≤ 46.0.2490.862015-12-06
CVE-2015-8480 [CRITICAL] CWE-119 CVE-2015-8480: The VideoFramePool::PoolImpl::CreateFrame function in media/base/video_frame_pool.cc in Google Chrom
The VideoFramePool::PoolImpl::CreateFrame function in media/base/video_frame_pool.cc in Google Chrome before 47.0.2526.73 does not initialize memory for a video-frame data structure, which might allow remote attackers to cause a denial of service (out-of-bounds memory access) or possibly have unspecified other impact by leveraging improper interacti
nvd
CVE-2015-6765CRITICALCVSS 10.0≤ 46.0.2490.862015-12-06
CVE-2015-6765 [CRITICAL] CVE-2015-6765: Use-after-free vulnerability in content/browser/appcache/appcache_update_job.cc in Google Chrome bef
Use-after-free vulnerability in content/browser/appcache/appcache_update_job.cc in Google Chrome before 47.0.2526.73 allows remote attackers to execute arbitrary code or cause a denial of service by leveraging the mishandling of AppCache update jobs.
nvd
CVE-2015-6787CRITICALCVSS 10.0PoC≤ 46.0.2490.862015-12-06
CVE-2015-6787 [CRITICAL] CVE-2015-6787: Multiple unspecified vulnerabilities in Google Chrome before 47.0.2526.73 allow attackers to cause a
Multiple unspecified vulnerabilities in Google Chrome before 47.0.2526.73 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
nvd
CVE-2015-6764CRITICALCVSS 9.8≤ 46.0.2490.862015-12-06
CVE-2015-6764 [CRITICAL] CWE-119 CVE-2015-6764: The BasicJsonStringifier::SerializeJSArray function in json-stringifier.h in the JSON stringifier in
The BasicJsonStringifier::SerializeJSArray function in json-stringifier.h in the JSON stringifier in Google V8, as used in Google Chrome before 47.0.2526.73, improperly loads array elements, which allows remote attackers to cause a denial of service (out-of-bounds memory access) or possibly have unspecified other impact via crafted JavaScript code.
nvd
CVE-2015-6775HIGHCVSS 7.5≤ 46.0.2490.862015-12-06
CVE-2015-6775 [HIGH] CVE-2015-6775: fpdfsdk/src/jsapi/fxjs_v8.cpp in PDFium, as used in Google Chrome before 47.0.2526.73, does not use
fpdfsdk/src/jsapi/fxjs_v8.cpp in PDFium, as used in Google Chrome before 47.0.2526.73, does not use signatures, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that leverage "type confusion."
nvd
CVE-2015-6778HIGHCVSS 7.5≤ 46.0.2490.862015-12-06
CVE-2015-6778 [HIGH] CWE-119 CVE-2015-6778: The CJBig2_SymbolDict class in fxcodec/jbig2/JBig2_SymbolDict.cpp in PDFium, as used in Google Chrom
The CJBig2_SymbolDict class in fxcodec/jbig2/JBig2_SymbolDict.cpp in PDFium, as used in Google Chrome before 47.0.2526.73, allows remote attackers to cause a denial of service (out-of-bounds memory access) or possibly have unspecified other impact via a PDF document containing crafted data with JBIG2 compression.
nvd
CVE-2015-8479HIGHCVSS 7.5≤ 46.0.2490.862015-12-06
CVE-2015-8479 [HIGH] CWE-119 CVE-2015-8479: Use-after-free vulnerability in the AudioOutputDevice::OnDeviceAuthorized function in media/audio/au
Use-after-free vulnerability in the AudioOutputDevice::OnDeviceAuthorized function in media/audio/audio_output_device.cc in Google Chrome before 47.0.2526.73 allows attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact by triggering access to an unauthorized audio output device.
nvd
CVE-2015-6781HIGHCVSS 7.5≤ 46.0.2490.862015-12-06
CVE-2015-6781 [HIGH] CWE-189 CVE-2015-6781: Integer overflow in the FontData::Bound function in data/font_data.cc in Google sfntly, as used in G
Integer overflow in the FontData::Bound function in data/font_data.cc in Google sfntly, as used in Google Chrome before 47.0.2526.73, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted offset or length value within font data in an SFNT container.
nvd
CVE-2015-6767HIGHCVSS 7.5≤ 46.0.2490.862015-12-06
CVE-2015-6767 [HIGH] CVE-2015-6767: Use-after-free vulnerability in content/browser/appcache/appcache_dispatcher_host.cc in the AppCache
Use-after-free vulnerability in content/browser/appcache/appcache_dispatcher_host.cc in the AppCache implementation in Google Chrome before 47.0.2526.73 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging incorrect pointer maintenance associated with certain callbacks.
nvd
CVE-2015-6772HIGHCVSS 7.5≤ 46.0.2490.862015-12-06
CVE-2015-6772 [HIGH] CWE-264 CVE-2015-6772: The DOM implementation in Blink, as used in Google Chrome before 47.0.2526.73, does not prevent java
The DOM implementation in Blink, as used in Google Chrome before 47.0.2526.73, does not prevent javascript: URL navigation while a document is being detached, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code that improperly interacts with a plugin.
nvd
CVE-2015-6771HIGHCVSS 7.5≤ 46.0.2490.862015-12-06
CVE-2015-6771 [HIGH] CWE-119 CVE-2015-6771: js/array.js in Google V8, as used in Google Chrome before 47.0.2526.73, improperly implements certai
js/array.js in Google V8, as used in Google Chrome before 47.0.2526.73, improperly implements certain map and filter operations for arrays, which allows remote attackers to cause a denial of service (out-of-bounds memory access) or possibly have unspecified other impact via crafted JavaScript code.
nvd
CVE-2015-6774HIGHCVSS 7.5≤ 46.0.2490.862015-12-06
CVE-2015-6774 [HIGH] CVE-2015-6774: Use-after-free vulnerability in the GetLoadTimes function in renderer/loadtimes_extension_bindings.c
Use-after-free vulnerability in the GetLoadTimes function in renderer/loadtimes_extension_bindings.cc in the Extensions implementation in Google Chrome before 47.0.2526.73 allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code that modifies a pointer used for reporting loadTimes data.
nvd
CVE-2015-6769HIGHCVSS 7.5≤ 46.0.2490.862015-12-06
CVE-2015-6769 [HIGH] CWE-264 CVE-2015-6769: The provisional-load commit implementation in WebKit/Source/bindings/core/v8/WindowProxy.cpp in Goog
The provisional-load commit implementation in WebKit/Source/bindings/core/v8/WindowProxy.cpp in Google Chrome before 47.0.2526.73 allows remote attackers to bypass the Same Origin Policy by leveraging a delay in window proxy clearing.
nvd
CVE-2015-6777HIGHCVSS 7.5≤ 46.0.2490.862015-12-06
CVE-2015-6777 [HIGH] CVE-2015-6777: Use-after-free vulnerability in the ContainerNode::notifyNodeInsertedInternal function in WebKit/Sou
Use-after-free vulnerability in the ContainerNode::notifyNodeInsertedInternal function in WebKit/Source/core/dom/ContainerNode.cpp in the DOM implementation in Google Chrome before 47.0.2526.73 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to DOMCharacterDataModified events for certain detache
nvd
CVE-2015-6768HIGHCVSS 7.5≤ 46.0.2490.862015-12-06
CVE-2015-6768 [HIGH] CWE-264 CVE-2015-6768: The DOM implementation in Google Chrome before 47.0.2526.73 allows remote attackers to bypass the Sa
The DOM implementation in Google Chrome before 47.0.2526.73 allows remote attackers to bypass the Same Origin Policy via unspecified vectors, a different vulnerability than CVE-2015-6770.
nvd
CVE-2015-6770HIGHCVSS 7.5≤ 46.0.2490.862015-12-06
CVE-2015-6770 [HIGH] CVE-2015-6770: The DOM implementation in Google Chrome before 47.0.2526.73 allows remote attackers to bypass the Sa
The DOM implementation in Google Chrome before 47.0.2526.73 allows remote attackers to bypass the Same Origin Policy via unspecified vectors, a different vulnerability than CVE-2015-6768.
nvd
CVE-2015-6766HIGHCVSS 7.5≤ 46.0.2490.862015-12-06
CVE-2015-6766 [HIGH] CVE-2015-6766: Use-after-free vulnerability in the AppCache implementation in Google Chrome before 47.0.2526.73 all
Use-after-free vulnerability in the AppCache implementation in Google Chrome before 47.0.2526.73 allows remote attackers with renderer access to cause a denial of service or possibly have unspecified other impact by leveraging incorrect AppCacheUpdateJob behavior associated with duplicate cache selection.
nvd
CVE-2015-6773HIGHCVSS 7.5≤ 46.0.2490.862015-12-06
CVE-2015-6773 [HIGH] CWE-119 CVE-2015-6773: The convolution implementation in Skia, as used in Google Chrome before 47.0.2526.73, does not prope
The convolution implementation in Skia, as used in Google Chrome before 47.0.2526.73, does not properly constrain row lengths, which allows remote attackers to cause a denial of service (out-of-bounds memory access) or possibly have unspecified other impact via crafted graphics data.
nvd
CVE-2015-8478HIGHCVSS 7.5≤ 46.0.2490.862015-12-06
CVE-2015-8478 [HIGH] CVE-2015-8478: Multiple unspecified vulnerabilities in Google V8 before 4.7.80.23, as used in Google Chrome before
Multiple unspecified vulnerabilities in Google V8 before 4.7.80.23, as used in Google Chrome before 47.0.2526.73, allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
nvd
CVE-2015-6786MEDIUMCVSS 4.3≤ 46.0.2490.862015-12-06
CVE-2015-6786 [MEDIUM] CWE-264 CVE-2015-6786: The CSPSourceList::matches function in WebKit/Source/core/frame/csp/CSPSourceList.cpp in the Content
The CSPSourceList::matches function in WebKit/Source/core/frame/csp/CSPSourceList.cpp in the Content Security Policy (CSP) implementation in Google Chrome before 47.0.2526.73 accepts a blob:, data:, or filesystem: URL as a match for a * pattern, which allows remote attackers to bypass intended scheme restrictions in opportunistic circumstances by leve
nvd