CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   

Google » Chrome : Security Vulnerabilities (CVSS score between 6 and 6.99)

CVSS Scores Greater Than: 0   1   2   3   4   5   6   7   8   9  
Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2022-0809 119 Overflow Mem. Corr. 2022-04-05 2023-01-24
6.8
 None Remote Medium Not required Partial Partial Partial
Out of bounds memory access in WebXR in Google Chrome prior to 99.0.4844.51 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
2 CVE-2022-0808 416 2022-04-05 2023-01-24
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Chrome OS Shell in Google Chrome on Chrome OS prior to 99.0.4844.51 allowed a remote attacker who convinced a user to engage in a series of user interaction to potentially exploit heap corruption via user interactions.
3 CVE-2022-0800 787 Overflow 2022-04-05 2023-01-24
6.8
 None Remote Medium Not required Partial Partial Partial
Heap buffer overflow in Cast UI in Google Chrome prior to 99.0.4844.51 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page.
4 CVE-2022-0795 843 2022-04-05 2022-10-27
6.8
 None Remote Medium Not required Partial Partial Partial
Type confusion in Blink Layout in Google Chrome prior to 99.0.4844.51 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
5 CVE-2022-0794 416 2022-04-05 2022-10-27
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in WebShare in Google Chrome prior to 99.0.4844.51 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page.
6 CVE-2022-0793 416 2022-04-05 2022-10-27
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Cast in Google Chrome prior to 99.0.4844.51 allowed an attacker who convinced a user to install a malicious extension and engage in specific user interaction to potentially exploit heap corruption via a crafted Chrome Extension.
7 CVE-2022-0790 416 2022-04-05 2023-01-24
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Cast UI in Google Chrome prior to 99.0.4844.51 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially perform a sandbox escape via a crafted HTML page.
8 CVE-2022-0789 787 Overflow 2022-04-05 2022-10-27
6.8
 None Remote Medium Not required Partial Partial Partial
Heap buffer overflow in ANGLE in Google Chrome prior to 99.0.4844.51 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
9 CVE-2022-0610 119 Overflow 2022-04-05 2022-04-11
6.8
 None Remote Medium Not required Partial Partial Partial
Inappropriate implementation in Gamepad API in Google Chrome prior to 98.0.4758.102 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
10 CVE-2022-0609 416 2022-04-05 2022-04-08
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Animation in Google Chrome prior to 98.0.4758.102 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
11 CVE-2022-0608 190 Overflow 2022-04-05 2022-04-08
6.8
 None Remote Medium Not required Partial Partial Partial
Integer overflow in Mojo in Google Chrome prior to 98.0.4758.102 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
12 CVE-2022-0607 416 2022-04-05 2022-04-11
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in GPU in Google Chrome prior to 98.0.4758.102 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
13 CVE-2022-0606 416 2022-04-05 2022-04-08
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in ANGLE in Google Chrome prior to 98.0.4758.102 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
14 CVE-2022-0605 416 2022-04-05 2022-04-11
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Webstore API in Google Chrome prior to 98.0.4758.102 allowed an attacker who convinced a user to install a malicious extension and convinced a user to enage in specific user interaction to potentially exploit heap corruption via a crafted HTML page.
15 CVE-2022-0604 787 Overflow 2022-04-05 2022-04-08
6.8
 None Remote Medium Not required Partial Partial Partial
Heap buffer overflow in Tab Groups in Google Chrome prior to 98.0.4758.102 allowed an attacker who convinced a user to install a malicious extension and engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page.
16 CVE-2022-0470 119 Overflow Mem. Corr. 2022-04-05 2022-04-11
6.8
 None Remote Medium Not required Partial Partial Partial
Out of bounds memory access in V8 in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
17 CVE-2022-0469 416 2022-04-05 2022-04-08
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Cast in Google Chrome prior to 98.0.4758.80 allowed a remote attacker who convinced a user to engage in specific interactions to potentially exploit heap corruption via a crafted HTML page.
18 CVE-2022-0468 416 2022-04-05 2022-04-08
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Payments in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
19 CVE-2022-0467 Bypass 2022-04-05 2022-04-12
6.8
 None Remote Medium Not required Partial Partial Partial
Inappropriate implementation in Pointer Lock in Google Chrome on Windows prior to 98.0.4758.80 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.
20 CVE-2022-0466 2022-04-05 2022-04-13
6.8
 None Remote Medium Not required Partial Partial Partial
Inappropriate implementation in Extensions Platform in Google Chrome prior to 98.0.4758.80 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted HTML page.
21 CVE-2022-0465 416 2022-04-05 2022-04-08
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Extensions in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to potentially exploit heap corruption via user interaction.
22 CVE-2022-0464 416 2022-04-05 2022-04-08
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Accessibility in Google Chrome prior to 98.0.4758.80 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via user interaction.
23 CVE-2022-0463 416 2022-04-05 2022-04-08
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Accessibility in Google Chrome prior to 98.0.4758.80 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via user interaction.
24 CVE-2022-0461 668 Bypass 2022-04-05 2022-04-12
6.4
 None Remote Low Not required Partial Partial None
Policy bypass in COOP in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to bypass iframe sandbox via a crafted HTML page.
25 CVE-2022-0460 416 2022-04-05 2022-04-08
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Window Dialogue in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
26 CVE-2022-0459 416 2022-04-05 2022-04-11
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Screen Capture in Google Chrome prior to 98.0.4758.80 allowed a remote attacker who had compromised the renderer process and convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page.
27 CVE-2022-0458 416 2022-04-05 2022-04-08
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Thumbnail Tab Strip in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
28 CVE-2022-0457 843 2022-04-05 2022-04-11
6.8
 None Remote Medium Not required Partial Partial Partial
Type confusion in V8 in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
29 CVE-2022-0456 416 2022-04-05 2022-04-08
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Web Search in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to potentially exploit heap corruption via profile destruction.
30 CVE-2022-0454 787 Overflow 2022-04-05 2022-04-08
6.8
 None Remote Medium Not required Partial Partial Partial
Heap buffer overflow in ANGLE in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
31 CVE-2022-0453 416 2022-04-05 2022-04-08
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Reader Mode in Google Chrome prior to 98.0.4758.80 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.
32 CVE-2022-0452 416 2022-04-05 2022-04-11
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Safe Browsing in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.
33 CVE-2022-0311 787 Overflow 2022-02-12 2022-02-22
6.8
 None Remote Medium Not required Partial Partial Partial
Heap buffer overflow in Task Manager in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page.
34 CVE-2022-0310 787 Overflow 2022-02-12 2022-02-22
6.8
 None Remote Medium Not required Partial Partial Partial
Heap buffer overflow in Task Manager in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via specific user interactions.
35 CVE-2022-0307 416 2022-02-12 2022-02-19
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Optimization Guide in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page.
36 CVE-2022-0306 787 Overflow 2022-02-12 2022-05-11
6.8
 None Remote Medium Not required Partial Partial Partial
Heap buffer overflow in PDFium in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
37 CVE-2022-0304 416 2022-02-12 2022-02-19
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Bookmarks in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via a crafted HTML page.
38 CVE-2022-0302 416 2022-02-12 2022-02-19
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Omnibox in Google Chrome prior to 97.0.4692.99 allowed an attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via a crafted HTML page.
39 CVE-2022-0301 787 Overflow 2022-02-12 2022-02-22
6.8
 None Remote Medium Not required Partial Partial Partial
Heap buffer overflow in DevTools in Google Chrome prior to 97.0.4692.99 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.
40 CVE-2022-0298 416 2022-02-12 2022-02-19
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Scheduling in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
41 CVE-2022-0297 416 2022-02-12 2022-02-19
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Vulkan in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
42 CVE-2022-0296 416 2022-02-12 2022-02-19
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Printing in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who convinced the user to engage is specific user interactions to potentially exploit heap corruption via a crafted HTML page.
43 CVE-2022-0295 416 2022-02-12 2022-02-19
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Omnibox in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who convinced the user to engage is specific user interactions to potentially exploit heap corruption via a crafted HTML page.
44 CVE-2022-0293 416 2022-02-12 2022-02-19
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Web packaging in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
45 CVE-2022-0290 416 2022-02-12 2022-04-01
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Site isolation in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.
46 CVE-2022-0289 416 2022-02-12 2022-03-31
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Safe browsing in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
47 CVE-2022-0115 908 2022-02-12 2022-04-19
6.8
 None Remote Medium Not required Partial Partial Partial
Uninitialized use in File API in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.
48 CVE-2022-0106 416 2022-02-12 2022-04-19
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in Autofill in Google Chrome prior to 97.0.4692.71 allowed a remote attacker who convinced a user to perform specific user gesture to potentially exploit heap corruption via a crafted HTML page.
49 CVE-2022-0105 416 2022-02-12 2022-04-19
6.8
 None Remote Medium Not required Partial Partial Partial
Use after free in PDF Accessibility in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
50 CVE-2022-0104 787 Overflow 2022-02-12 2022-04-19
6.8
 None Remote Medium Not required Partial Partial Partial
Heap buffer overflow in ANGLE in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Total number of vulnerabilities : 866   Page : 1 (This Page)2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.