Google Chrome vulnerabilities

3,975 known vulnerabilities affecting google/chrome.

Total CVEs

3,975

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL297HIGH2024MEDIUM1626LOW17UNKNOWN11

Vulnerabilities

Page 65 of 199

CVE-2022-0301HIGHCVSS 7.8fixed in 97.0.4692.99≥ unspecified, < 97.0.4692.992022-02-12

CVE-2022-0301 [HIGH] CWE-416 CVE-2022-0301: Heap buffer overflow in DevTools in Google Chrome prior to 97.0.4692.99 allowed an attacker who conv Heap buffer overflow in DevTools in Google Chrome prior to 97.0.4692.99 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.

nvd

CVE-2022-0103HIGHCVSS 8.8fixed in 97.0.4692.71≥ unspecified, < 97.0.4692.712022-02-12

CVE-2022-0103 [HIGH] CWE-416 CVE-2022-0103: Use after free in SwiftShader in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to po Use after free in SwiftShader in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

nvd

CVE-2022-0114HIGHCVSS 8.1fixed in 97.0.4692.71≥ unspecified, < 97.0.4692.712022-02-12

CVE-2022-0114 [HIGH] CWE-125 CVE-2022-0114: Out of bounds memory access in Blink Serial API in Google Chrome prior to 97.0.4692.71 allowed a rem Out of bounds memory access in Blink Serial API in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page and virtual serial port driver.

nvd

CVE-2022-0289HIGHCVSS 8.8fixed in 97.0.4692.99≥ unspecified, < 97.0.4692.992022-02-12

CVE-2022-0289 [HIGH] CWE-416 CVE-2022-0289: Use after free in Safe browsing in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to Use after free in Safe browsing in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

nvd

CVE-2022-0302HIGHCVSS 8.8fixed in 97.0.4692.99≥ unspecified, < 97.0.4692.992022-02-12

CVE-2022-0302 [HIGH] CWE-416 CVE-2022-0302: Use after free in Omnibox in Google Chrome prior to 97.0.4692.99 allowed an attacker who convinced a Use after free in Omnibox in Google Chrome prior to 97.0.4692.99 allowed an attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via a crafted HTML page.

nvd

CVE-2022-0107HIGHCVSS 8.8fixed in 97.0.4692.71≥ unspecified, < 97.0.4692.712022-02-12

CVE-2022-0107 [HIGH] CWE-416 CVE-2022-0107: Use after free in File Manager API in Google Chrome on Chrome OS prior to 97.0.4692.71 allowed an at Use after free in File Manager API in Google Chrome on Chrome OS prior to 97.0.4692.71 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.

nvd

CVE-2022-0105HIGHCVSS 8.8fixed in 97.0.4692.71≥ unspecified, < 97.0.4692.712022-02-12

CVE-2022-0105 [HIGH] CWE-416 CVE-2022-0105: Use after free in PDF Accessibility in Google Chrome prior to 97.0.4692.71 allowed a remote attacker Use after free in PDF Accessibility in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

nvd

CVE-2022-0106HIGHCVSS 8.8fixed in 97.0.4692.71≥ unspecified, < 97.0.4692.712022-02-12

CVE-2022-0106 [HIGH] CWE-416 CVE-2022-0106: Use after free in Autofill in Google Chrome prior to 97.0.4692.71 allowed a remote attacker who conv Use after free in Autofill in Google Chrome prior to 97.0.4692.71 allowed a remote attacker who convinced a user to perform specific user gesture to potentially exploit heap corruption via a crafted HTML page.

nvd

CVE-2022-0308HIGHCVSS 8.8fixed in 97.0.4692.99≥ unspecified, < 97.0.4692.992022-02-12

CVE-2022-0308 [HIGH] CWE-416 CVE-2022-0308: Use after free in Data Transfer in Google Chrome on Chrome OS prior to 97.0.4692.99 allowed a remote Use after free in Data Transfer in Google Chrome on Chrome OS prior to 97.0.4692.99 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page.

nvd

CVE-2022-0102HIGHCVSS 8.8fixed in 97.0.4692.71≥ unspecified, < 97.0.4692.712022-02-12

CVE-2022-0102 [HIGH] CWE-843 CVE-2022-0102: Type confusion in V8 in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially Type confusion in V8 in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

nvd

CVE-2022-0100HIGHCVSS 8.8fixed in 97.0.4692.71≥ unspecified, < 97.0.4692.712022-02-12

CVE-2022-0100 [HIGH] CWE-787 CVE-2022-0100: Heap buffer overflow in Media streams API in Google Chrome prior to 97.0.4692.71 allowed a remote at Heap buffer overflow in Media streams API in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

nvd

CVE-2022-0298HIGHCVSS 8.8fixed in 97.0.4692.99≥ unspecified, < 97.0.4692.992022-02-12

CVE-2022-0298 [HIGH] CWE-416 CVE-2022-0298: Use after free in Scheduling in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to pot Use after free in Scheduling in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

nvd

CVE-2022-0293HIGHCVSS 8.8fixed in 97.0.4692.99≥ unspecified, < 97.0.4692.992022-02-12

CVE-2022-0293 [HIGH] CWE-416 CVE-2022-0293: Use after free in Web packaging in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to Use after free in Web packaging in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

nvd

CVE-2022-0304HIGHCVSS 8.8fixed in 97.0.4692.99≥ unspecified, < 97.0.4692.992022-02-12

CVE-2022-0304 [HIGH] CWE-416 CVE-2022-0304: Use after free in Bookmarks in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who con Use after free in Bookmarks in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via a crafted HTML page.

nvd

CVE-2022-0101HIGHCVSS 8.8fixed in 97.0.4692.71≥ unspecified, < 97.0.4692.712022-02-12

CVE-2022-0101 [HIGH] CWE-787 CVE-2022-0101: Heap buffer overflow in Bookmarks in Google Chrome prior to 97.0.4692.71 allowed a remote attacker w Heap buffer overflow in Bookmarks in Google Chrome prior to 97.0.4692.71 allowed a remote attacker who convinced a user to perform specific user gesture to potentially exploit heap corruption via specific user gesture.

nvd

CVE-2022-0310HIGHCVSS 8.8fixed in 97.0.4692.99≥ unspecified, < 97.0.4692.992022-02-12

CVE-2022-0310 [HIGH] CWE-787 CVE-2022-0310: Heap buffer overflow in Task Manager in Google Chrome prior to 97.0.4692.99 allowed a remote attacke Heap buffer overflow in Task Manager in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via specific user interactions.

nvd

CVE-2022-0300HIGHCVSS 8.8fixed in 97.0.4692.99≥ unspecified, < 97.0.4692.992022-02-12

CVE-2022-0300 [HIGH] CWE-416 CVE-2022-0300: Use after free in Text Input Method Editor in Google Chrome on Android prior to 97.0.4692.99 allowed Use after free in Text Input Method Editor in Google Chrome on Android prior to 97.0.4692.99 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via a crafted HTML page.

nvd

CVE-2022-0296HIGHCVSS 8.8fixed in 97.0.4692.99≥ unspecified, < 97.0.4692.992022-02-12

CVE-2022-0296 [HIGH] CWE-416 CVE-2022-0296: Use after free in Printing in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who conv Use after free in Printing in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who convinced the user to engage is specific user interactions to potentially exploit heap corruption via a crafted HTML page.

nvd

CVE-2022-0311HIGHCVSS 8.8fixed in 97.0.4692.99≥ unspecified, < 97.0.4692.992022-02-12

CVE-2022-0311 [HIGH] CWE-787 CVE-2022-0311: Heap buffer overflow in Task Manager in Google Chrome prior to 97.0.4692.99 allowed a remote attacke Heap buffer overflow in Task Manager in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page.

nvd

CVE-2022-0099HIGHCVSS 8.8fixed in 97.0.4692.71≥ unspecified, < 97.0.4692.712022-02-12

CVE-2022-0099 [HIGH] CWE-416 CVE-2022-0099: Use after free in Sign-in in Google Chrome prior to 97.0.4692.71 allowed a remote attacker who convi Use after free in Sign-in in Google Chrome prior to 97.0.4692.71 allowed a remote attacker who convinced a user to perform specific user gestures to potentially exploit heap corruption via specific user gesture.

nvd

← Previous65 / 199Next →