National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/a:google:chrome:9.0.597.58
There are 1,812 matching records.
Displaying matches 1661 through 1680.
Vuln ID Summary CVSS Severity
CVE-2011-2805

Google Chrome before 13.0.782.107 allows remote attackers to bypass the Same Origin Policy and conduct script injection attacks via unspecified vectors.

Published: August 02, 2011; 08:55:02 PM -04:00
    V2: 7.5 HIGH
CVE-2011-2804

Google Chrome before 13.0.782.107 does not properly handle nested functions in PDF documents, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted document.

Published: August 02, 2011; 08:55:02 PM -04:00
    V2: 7.5 HIGH
CVE-2011-2803

Google Chrome before 13.0.782.107 does not properly handle Skia paths, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

Published: August 02, 2011; 08:55:02 PM -04:00
    V2: 5.0 MEDIUM
CVE-2011-2802

Google V8, as used in Google Chrome before 13.0.782.107, does not properly perform const lookups, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted web site.

Published: August 02, 2011; 08:55:02 PM -04:00
    V2: 6.8 MEDIUM
CVE-2011-2801

Use-after-free vulnerability in Google Chrome before 13.0.782.107 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the frame loader.

Published: August 02, 2011; 08:55:02 PM -04:00
    V2: 7.5 HIGH
CVE-2011-2800

Google Chrome before 13.0.782.107 allows remote attackers to obtain potentially sensitive information about client-side redirect targets via a crafted web site.

Published: August 02, 2011; 08:55:02 PM -04:00
    V2: 4.3 MEDIUM
CVE-2011-2799

Use-after-free vulnerability in Google Chrome before 13.0.782.107 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to HTML range handling.

Published: August 02, 2011; 08:55:02 PM -04:00
    V2: 7.5 HIGH
CVE-2011-2798

Google Chrome before 13.0.782.107 does not properly restrict access to internal schemes, which allows remote attackers to have an unspecified impact via a crafted web site.

Published: August 02, 2011; 08:55:02 PM -04:00
    V2: 5.0 MEDIUM
CVE-2011-2797

Use-after-free vulnerability in Google Chrome before 13.0.782.107 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to resource caching.

Published: August 02, 2011; 08:55:02 PM -04:00
    V2: 7.5 HIGH
CVE-2011-2796

Use-after-free vulnerability in Skia, as used in Google Chrome before 13.0.782.107, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

Published: August 02, 2011; 08:55:02 PM -04:00
    V2: 7.5 HIGH
CVE-2011-2795

Google Chrome before 13.0.782.107 does not prevent calls to functions in other frames, which allows remote attackers to bypass intended access restrictions via a crafted web site, related to a "cross-frame function leak."

Published: August 02, 2011; 08:55:02 PM -04:00
    V2: 5.8 MEDIUM
CVE-2011-2794

Google Chrome before 13.0.782.107 does not properly perform text iteration, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

Published: August 02, 2011; 08:55:02 PM -04:00
    V2: 5.0 MEDIUM
CVE-2011-2793

Use-after-free vulnerability in Google Chrome before 13.0.782.107 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to media selectors.

Published: August 02, 2011; 08:55:02 PM -04:00
    V2: 7.5 HIGH
CVE-2011-2792

Use-after-free vulnerability in Google Chrome before 13.0.782.107 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to float removal.

Published: August 02, 2011; 08:55:02 PM -04:00
    V2: 7.5 HIGH
CVE-2011-2791

The International Components for Unicode (ICU) functionality in Google Chrome before 13.0.782.107 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an out-of-bounds write.

Published: August 02, 2011; 08:55:02 PM -04:00
    V2: 7.5 HIGH
CVE-2011-2790

Use-after-free vulnerability in Google Chrome before 13.0.782.107 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving floating styles.

Published: August 02, 2011; 08:55:01 PM -04:00
    V2: 7.5 HIGH
CVE-2011-2789

Use-after-free vulnerability in Google Chrome before 13.0.782.107 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to instantiation of the Pepper plug-in.

Published: August 02, 2011; 08:55:01 PM -04:00
    V2: 7.5 HIGH
CVE-2011-2788

Buffer overflow in the inspector serialization functionality in Google Chrome before 13.0.782.107 allows user-assisted remote attackers to have an unspecified impact via unknown vectors.

Published: August 02, 2011; 08:55:01 PM -04:00
    V2: 6.8 MEDIUM
CVE-2011-2787

Google Chrome before 13.0.782.107 does not properly address re-entrancy issues associated with the GPU lock, which allows remote attackers to cause a denial of service (application crash) via unspecified vectors.

Published: August 02, 2011; 08:55:01 PM -04:00
    V2: 5.0 MEDIUM
CVE-2011-2786

Google Chrome before 13.0.782.107 does not ensure that the speech-input bubble is shown on the product's screen, which might make it easier for remote attackers to make audio recordings via a crafted web page containing an INPUT element.

Published: August 02, 2011; 08:55:01 PM -04:00
    V2: 4.3 MEDIUM