Show filters
11,796 Total Results
Displaying 11-20 of 10,000
Refine your search criteria for more targeted results.
Sort by:
Attacker Value
Moderate

CVE-2019-2215

Disclosure Date: October 11, 2019 (last updated July 26, 2024)
A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local application or a separate vulnerability in a network facing application.Product: AndroidAndroid ID: A-141720095
Attack Vector: LocalPrivileges: LowUser Interaction: None
1
3
Attacker Value
Very High

Chrome 0-day exploit CVE-2019-13720 used in Operation WizardOpium

Disclosure Date: October 10, 2019 (last updated October 06, 2023)
Use after free in WebAudio in Google Chrome prior to 78.0.3904.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
1
3
Attacker Value
Moderate

Google Chrome CVE-2019-5786 FileReader Use-After-Free Vulnerability

Disclosure Date: June 27, 2019 (last updated July 03, 2024)
Object lifetime issue in Blink in Google Chrome prior to 72.0.3626.121 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
1
3
Attacker Value
Unknown

CVE-2024-0519

Disclosure Date: January 16, 2024 (last updated August 15, 2024)
Out of bounds memory access in V8 in Google Chrome prior to 120.0.6099.224 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
3
0
Attacker Value
Unknown

CVE-2022-4135

Disclosure Date: November 25, 2022 (last updated October 08, 2023)
Heap buffer overflow in GPU in Google Chrome prior to 107.0.5304.121 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
3
0
Attacker Value
High

CVE-2021-37975

Disclosure Date: October 08, 2021 (last updated November 08, 2023)
Use after free in V8 in Google Chrome prior to 94.0.4606.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
2
1
Attacker Value
Very Low

CVE-2024-6100

Disclosure Date: June 20, 2024 (last updated June 21, 2024)
Type Confusion in V8 in Google Chrome prior to 126.0.6478.114 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
1
1
Attacker Value
Unknown

CVE-2024-1283

Disclosure Date: February 07, 2024 (last updated February 15, 2024)
Heap buffer overflow in Skia in Google Chrome prior to 121.0.6167.160 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
2
0
Attacker Value
Unknown

CVE-2023-3079

Disclosure Date: June 05, 2023 (last updated February 06, 2025)
Type confusion in V8 in Google Chrome prior to 114.0.5735.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
1
1
Attacker Value
Very High

CVE-2023-0129

Disclosure Date: January 10, 2023 (last updated October 08, 2023)
Heap buffer overflow in Network Service in Google Chrome prior to 109.0.5414.74 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page and specific interactions. (Chromium security severity: High)
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
1
1
View More Topics  < Previous  Next >