Search Results (Refine Search)
- CPE Product Version: cpe:/a:google:chrome:25.0.1364.117
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2013-0912 |
WebKit in Google Chrome before 25.0.1364.160 allows remote attackers to execute arbitrary code via vectors that leverage "type confusion." Published: March 11, 2013; 6:55:01 AM -0400 |
V3.x:(not available) V2.0: 7.5 HIGH |
CVE-2013-0911 |
Directory traversal vulnerability in Google Chrome before 25.0.1364.152 allows remote attackers to have an unspecified impact via vectors related to databases. Published: March 05, 2013; 4:55:23 PM -0500 |
V3.x:(not available) V2.0: 7.5 HIGH |
CVE-2013-0910 |
Google Chrome before 25.0.1364.152 does not properly manage the interaction between the browser process and renderer processes during authorization of the loading of a plug-in, which makes it easier for remote attackers to bypass intended access restrictions via vectors involving a blocked plug-in. Published: March 05, 2013; 4:55:23 PM -0500 |
V3.x:(not available) V2.0: 7.5 HIGH |
CVE-2013-0909 |
The XSS Auditor in Google Chrome before 25.0.1364.152 allows remote attackers to obtain sensitive HTTP Referer information via unspecified vectors. Published: March 05, 2013; 4:55:11 PM -0500 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
CVE-2013-0908 |
Google Chrome before 25.0.1364.152 does not properly manage bindings of extension processes, which has unspecified impact and attack vectors. Published: March 05, 2013; 4:55:11 PM -0500 |
V3.x:(not available) V2.0: 7.5 HIGH |
CVE-2013-0907 |
Race condition in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of media threads. Published: March 05, 2013; 4:55:11 PM -0500 |
V3.x:(not available) V2.0: 7.5 HIGH |
CVE-2013-0906 |
The IndexedDB implementation in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors. Published: March 05, 2013; 4:55:11 PM -0500 |
V3.x:(not available) V2.0: 7.5 HIGH |
CVE-2013-0905 |
Use-after-free vulnerability in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving an SVG animation. Published: March 05, 2013; 4:55:11 PM -0500 |
V3.x:(not available) V2.0: 7.5 HIGH |
CVE-2013-0904 |
The Web Audio implementation in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors. Published: March 05, 2013; 4:55:11 PM -0500 |
V3.x:(not available) V2.0: 7.5 HIGH |
CVE-2013-0903 |
Use-after-free vulnerability in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of browser navigation. Published: March 05, 2013; 4:55:11 PM -0500 |
V3.x:(not available) V2.0: 7.5 HIGH |
CVE-2013-0902 |
Use-after-free vulnerability in the frame-loader implementation in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. Published: March 05, 2013; 4:55:11 PM -0500 |
V3.x:(not available) V2.0: 7.5 HIGH |