National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/a:google:chrome:21.0.1180.53
There are 1,253 matching records.
Displaying matches 1161 through 1180.
Vuln ID Summary CVSS Severity
CVE-2012-5143

Integer overflow in Google Chrome before 23.0.1271.97 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to PPAPI image buffers.

Published: December 12, 2012; 06:38:44 AM -05:00
    V2: 10.0 HIGH
CVE-2012-5142

Google Chrome before 23.0.1271.97 does not properly handle history navigation, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors.

Published: December 12, 2012; 06:38:44 AM -05:00
    V2: 10.0 HIGH
CVE-2012-5141

Google Chrome before 23.0.1271.97 does not properly restrict instantiation of the Chromoting client plug-in, which has unspecified impact and attack vectors.

Published: December 12, 2012; 06:38:44 AM -05:00
    V2: 10.0 HIGH
CVE-2012-5140

Use-after-free vulnerability in Google Chrome before 23.0.1271.97 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the URL loader.

Published: December 12, 2012; 06:38:44 AM -05:00
    V2: 10.0 HIGH
CVE-2012-5139

Use-after-free vulnerability in Google Chrome before 23.0.1271.97 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to visibility events.

Published: December 12, 2012; 06:38:44 AM -05:00
    V2: 10.0 HIGH
CVE-2012-5138

Google Chrome before 23.0.1271.95 does not properly handle file paths, which has unspecified impact and attack vectors.

Published: December 04, 2012; 01:05:55 AM -05:00
    V2: 10.0 HIGH
CVE-2012-5137

Use-after-free vulnerability in Google Chrome before 23.0.1271.95 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the Media Source API.

Published: December 04, 2012; 01:05:55 AM -05:00
    V2: 10.0 HIGH
CVE-2012-5136

Google Chrome before 23.0.1271.91 does not properly perform a cast of an unspecified variable during handling of the INPUT element, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted HTML document.

Published: November 27, 2012; 08:55:01 PM -05:00
    V2: 6.8 MEDIUM
CVE-2012-5135

Use-after-free vulnerability in Google Chrome before 23.0.1271.91 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to printing.

Published: November 27, 2012; 08:55:01 PM -05:00
    V2: 7.5 HIGH
CVE-2012-5134

Heap-based buffer underflow in the xmlParseAttValueComplex function in parser.c in libxml2 2.9.0 and earlier, as used in Google Chrome before 23.0.1271.91 and other products, allows remote attackers to cause a denial of service or possibly execute arbitrary code via crafted entities in an XML document.

Published: November 27, 2012; 08:55:01 PM -05:00
    V2: 6.8 MEDIUM
CVE-2012-5133

Use-after-free vulnerability in Google Chrome before 23.0.1271.91 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to SVG filters.

Published: November 27, 2012; 08:55:01 PM -05:00
    V2: 7.5 HIGH
CVE-2012-5132

Google Chrome before 23.0.1271.91 allows remote attackers to cause a denial of service (application crash) via a response with chunked transfer coding.

Published: November 27, 2012; 08:55:01 PM -05:00
    V2: 5.0 MEDIUM
CVE-2012-5131

Google Chrome before 23.0.1271.91 on Mac OS X does not properly mitigate improper rendering behavior in the Intel GPU driver, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

Published: November 27, 2012; 08:55:01 PM -05:00
    V2: 7.5 HIGH
CVE-2012-5130

Skia, as used in Google Chrome before 23.0.1271.91, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

Published: November 27, 2012; 08:55:00 PM -05:00
    V2: 5.0 MEDIUM
CVE-2012-5851

html/parser/XSSAuditor.cpp in WebCore in WebKit, as used in Google Chrome through 22 and Safari 5.1.7, does not consider all possible output contexts of reflected data, which makes it easier for remote attackers to bypass a cross-site scripting (XSS) protection mechanism via a crafted string, aka rdar problem 12019108.

Published: November 15, 2012; 06:58:40 AM -05:00
    V2: 4.3 MEDIUM
CVE-2012-5128

Google V8 before 3.13.7.5, as used in Google Chrome before 23.0.1271.64, does not properly perform write operations, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

Published: November 07, 2012; 06:43:16 AM -05:00
    V2: 7.5 HIGH
CVE-2012-5127

Integer overflow in Google Chrome before 23.0.1271.64 allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a crafted WebP image.

Published: November 07, 2012; 06:43:15 AM -05:00
    V2: 7.5 HIGH
CVE-2012-5126

Use-after-free vulnerability in Google Chrome before 23.0.1271.64 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of plug-in placeholders.

Published: November 07, 2012; 06:43:15 AM -05:00
    V2: 7.5 HIGH
CVE-2012-5125

Use-after-free vulnerability in Google Chrome before 23.0.1271.64 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of extension tabs.

Published: November 07, 2012; 06:43:15 AM -05:00
    V2: 7.5 HIGH
CVE-2012-5124

Google Chrome before 23.0.1271.64 does not properly handle textures, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.

Published: November 07, 2012; 06:43:15 AM -05:00
    V2: 7.5 HIGH