National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/a:google:chrome:2.0.156.1
There are 1,989 matching records.
Displaying matches 1901 through 1920.
Vuln ID Summary CVSS Severity
CVE-2010-3111

Google Chrome before 6.0.472.53 does not properly mitigate an unspecified flaw in the Windows kernel, which has unknown impact and attack vectors, a different vulnerability than CVE-2010-2897.

Published: August 24, 2010; 04:00:02 PM -04:00
    V2: 10.0 HIGH
CVE-2010-2903

Google Chrome before 5.0.375.125 performs unexpected truncation and improper eliding of hostnames, which has unspecified impact and remote attack vectors.

Published: July 28, 2010; 04:00:10 PM -04:00
    V2: 10.0 HIGH
CVE-2010-2902

The SVG implementation in Google Chrome before 5.0.375.125 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.

Published: July 28, 2010; 04:00:10 PM -04:00
    V2: 10.0 HIGH
CVE-2010-2901

The rendering implementation in Google Chrome before 5.0.375.125 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.

Published: July 28, 2010; 04:00:10 PM -04:00
    V2: 10.0 HIGH
CVE-2010-2900

Google Chrome before 5.0.375.125 does not properly handle a large canvas, which has unspecified impact and remote attack vectors.

Published: July 28, 2010; 04:00:10 PM -04:00
    V2: 10.0 HIGH
CVE-2010-2899

Unspecified vulnerability in the layout implementation in Google Chrome before 5.0.375.125 allows remote attackers to obtain sensitive information from process memory via unknown vectors.

Published: July 28, 2010; 04:00:10 PM -04:00
    V2: 5.0 MEDIUM
CVE-2010-2898

Google Chrome before 5.0.375.125 does not properly mitigate an unspecified flaw in the GNU C Library, which has unknown impact and attack vectors.

Published: July 28, 2010; 04:00:10 PM -04:00
    V2: 10.0 HIGH
CVE-2010-2897

Google Chrome before 5.0.375.125 does not properly mitigate an unspecified flaw in the Windows kernel, which has unknown impact and attack vectors.

Published: July 28, 2010; 04:00:10 PM -04:00
    V2: 10.0 HIGH
CVE-2010-2652

Google Chrome before 5.0.375.99 does not properly implement modal dialogs, which allows attackers to cause a denial of service (application crash) via unspecified vectors.

Published: July 06, 2010; 01:17:14 PM -04:00
    V2: 5.0 MEDIUM
CVE-2010-2651

The Cascading Style Sheets (CSS) implementation in Google Chrome before 5.0.375.99 does not properly perform style rendering, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.

Published: July 06, 2010; 01:17:14 PM -04:00
    V2: 9.3 HIGH
CVE-2010-2650

Unspecified vulnerability in Google Chrome before 5.0.375.99 has unknown impact and attack vectors, related to an "annoyance with print dialogs."

Published: July 06, 2010; 01:17:14 PM -04:00
    V2: 9.3 HIGH
CVE-2010-2649

Unspecified vulnerability in Google Chrome before 5.0.375.99 allows remote attackers to cause a denial of service (application crash) via an invalid image.

Published: July 06, 2010; 01:17:14 PM -04:00
    V2: 4.3 MEDIUM
CVE-2010-2648

The implementation of the Unicode Bidirectional Algorithm (aka Bidi algorithm or UBA) in Google Chrome before 5.0.375.99 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.

Published: July 06, 2010; 01:17:14 PM -04:00
    V2: 9.3 HIGH
CVE-2010-2647

Google Chrome before 5.0.375.99 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via an invalid SVG document.

Published: July 06, 2010; 01:17:14 PM -04:00
    V2: 9.3 HIGH
CVE-2010-2646

Google Chrome before 5.0.375.99 does not properly isolate sandboxed IFRAME elements, which has unspecified impact and remote attack vectors.

Published: July 06, 2010; 01:17:14 PM -04:00
    V2: 9.3 HIGH
CVE-2010-2645

Unspecified vulnerability in Google Chrome before 5.0.375.99, when WebGL is used, allows remote attackers to cause a denial of service (out-of-bounds read) via unknown vectors.

Published: July 06, 2010; 01:17:14 PM -04:00
    V2: 4.3 MEDIUM
CVE-2010-2302

Use-after-free vulnerability in WebCore in WebKit in Google Chrome before 5.0.375.70 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via vectors involving remote fonts in conjunction with shadow DOM trees, aka rdar problem 8007953. NOTE: this might overlap CVE-2010-1771.

Published: June 15, 2010; 02:00:02 PM -04:00
    V2: 9.3 HIGH
CVE-2010-2301

Cross-site scripting (XSS) vulnerability in editing/markup.cpp in WebCore in WebKit in Google Chrome before 5.0.375.70 allows remote attackers to inject arbitrary web script or HTML via vectors related to the node.innerHTML property of a TEXTAREA element. NOTE: this might overlap CVE-2010-1762.

Published: June 15, 2010; 02:00:02 PM -04:00
    V2: 4.3 MEDIUM
CVE-2010-2300

Use-after-free vulnerability in the Element::normalizeAttributes function in dom/Element.cpp in WebCore in WebKit in Google Chrome before 5.0.375.70 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via vectors related to handlers for DOM mutation events, aka rdar problem 7948784. NOTE: this might overlap CVE-2010-1759.

Published: June 15, 2010; 02:00:02 PM -04:00
    V2: 9.3 HIGH
CVE-2010-2299

The Clipboard::DispatchObject function in app/clipboard/clipboard.cc in Google Chrome before 5.0.375.70 does not properly handle CBF_SMBITMAP objects in a ViewHostMsg_ClipboardWriteObjectsAsync message, which might allow remote attackers to execute arbitrary code via vectors involving crafted data from the renderer process, related to a "Type Confusion" issue.

Published: June 15, 2010; 02:00:02 PM -04:00
    V2: 9.3 HIGH