VIR Vulnerability Intelligence Relay

Search

Found 2,063 results in 486ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2017-5023 medium 4.3 4.3 FIX arch arch google 9y ago multiple issues in chromium
CVE-2017-5022 medium 4.3 4.3 FIX arch arch google 9y ago multiple issues in chromium
CVE-2017-5021 medium 4.3 4.3 FIX arch arch google 9y ago multiple issues in chromium
CVE-2017-5020 medium 6.1 6.1 FIX arch arch google 9y ago multiple issues in chromium
CVE-2017-5019 medium 6.3 6.3 FIX arch arch google 9y ago multiple issues in chromium
CVE-2017-5018 medium 6.1 6.1 FIX arch arch google 9y ago multiple issues in chromium
CVE-2017-5017 medium 4.3 4.3 FIX arch arch google 9y ago multiple issues in chromium
CVE-2017-5016 medium 6.5 6.5 FIX arch arch google 9y ago multiple issues in chromium
CVE-2017-5015 medium 6.5 6.5 FIX arch arch google 9y ago multiple issues in chromium
CVE-2017-5014 medium 6.3 6.3 FIX arch arch google 9y ago multiple issues in chromium
CVE-2017-5013 medium 6.5 6.5 FIX arch arch google 9y ago multiple issues in chromium
CVE-2017-5012 high 8.8 8.8 FIX arch arch google 9y ago multiple issues in chromium
CVE-2017-5011 medium 6.5 6.5 FIX arch arch google 9y ago multiple issues in chromium
CVE-2017-5010 medium 6.1 6.1 FIX arch arch google 9y ago multiple issues in chromium
CVE-2017-5009 high 8.8 8.8 FIX arch arch google 9y ago multiple issues in chromium
CVE-2017-5008 medium 6.1 6.1 FIX arch arch google 9y ago multiple issues in chromium
CVE-2017-5007 medium 6.1 6.1 FIX arch arch google 9y ago multiple issues in chromium
CVE-2017-5006 medium 6.1 6.1 FIX arch arch google 9y ago multiple issues in chromium
CVE-2016-9650 medium 4.3 4.3 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5226 medium 6.1 6.1 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5225 medium 4.3 4.3 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5224 medium 4.3 4.3 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5223 medium 6.5 6.5 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5222 medium 6.5 6.5 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5221 medium 6.3 6.3 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5220 medium 6.5 6.5 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5219 medium 6.3 6.3 FIX slesarch arch google 10y ago multiple issues in chromium
CVE-2016-5218 medium 6.5 6.5 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5217 medium 6.5 6.5 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5216 medium 6.3 6.3 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5215 medium 6.3 6.3 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5214 medium 4.3 4.3 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5213 high 8.8 8.8 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5212 medium 6.5 6.5 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5211 high 8.8 8.8 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5210 high 8.8 8.8 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5209 high 8.8 8.8 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5208 medium 6.1 6.1 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5207 medium 6.1 6.1 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5206 high 8.8 8.8 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5205 medium 6.1 6.1 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5204 medium 6.1 6.1 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5203 high 8.8 8.8 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5201 medium 6.5 6.5 google 10y ago A leak of privateClass in the extensions API in Google Chrome prior to 54.0.2840.100 for Linux, and 54.0.2840.99 for Windows, and 54.0.2840.98 for Mac allowed a remote attacker to access privileged J…
CVE-2016-5200 high 8.8 8.8 sles google 10y ago V8 in Google Chrome prior to 54.0.2840.98 for Mac, and 54.0.2840.99 for Windows, and 54.0.2840.100 for Linux, and 55.0.2883.84 for Android incorrectly applied type rules, which allowed a remote attac…
CVE-2016-5199 high 8.8 8.8 FIX debian debian google 10y ago An off by one error resulting in an allocation of zero size in FFmpeg in Google Chrome prior to 54.0.2840.98 for Mac, and 54.0.2840.99 for Windows, and 54.0.2840.100 for Linux, and 55.0.2883.84 for A…
CVE-2016-5197 high 8.8 8.8 google 10y ago The content view client in Google Chrome prior to 54.0.2840.85 for Android insufficiently validated intent URLs, which allowed a remote attacker who had compromised the renderer process to start arbi…
CVE-2016-5196 high 8.8 8.8 google 10y ago The content renderer client in Google Chrome prior to 54.0.2840.85 for Android insufficiently enforced the Same Origin Policy amongst downloaded files, which allowed a remote attacker to access any d…
CVE-2016-5193 medium 4.3 4.3 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5192 medium 6.5 6.5 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5191 medium 6.1 6.1 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5190 medium 6.3 6.3 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5189 medium 6.5 6.5 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5188 medium 4.3 4.3 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5187 medium 6.5 6.5 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5186 medium 5.3 5.3 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5185 high 8.8 8.8 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5184 high 8.8 8.8 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5183 high 8.8 8.8 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5182 high 8.8 8.8 FIX arch arch google 10y ago multiple issues in chromium
CVE-2016-5181 medium 6.1 6.1 FIX arch arch google 10y ago multiple issues in chromium
CVE-2005-4900 medium 5.9 5.9 google 10y ago SHA-1 is not collision resistant, which makes it easier for context-dependent attackers to conduct spoofing attacks, as demonstrated by attacks on the use of SHA-1 in TLS 1.2. NOTE: this CVE exists …
CVE-2016-5176 medium 6.5 6.5 google 10y ago Google Chrome before 53.0.2785.113 allows remote attackers to bypass the SafeBrowsing protection mechanism via unspecified vectors.
CVE-2016-7549 high 8.8 8.8 google 10y ago Google Chrome before 53.0.2785.113 does not ensure that the recipient of a certain IPC message is a valid RenderFrame or RenderWidget, which allows remote attackers to cause a denial of service (inva…
CVE-2016-5175 high 8.8 8.8 google 10y ago Multiple unspecified vulnerabilities in Google Chrome before 53.0.2785.113 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
CVE-2016-5174 medium 6.5 6.5 google 10y ago browser/ui/cocoa/browser_window_controller_private.mm in Google Chrome before 53.0.2785.113 does not process fullscreen toggle requests during a fullscreen transition, which allows remote attackers t…
CVE-2016-5173 high 7.1 7.1 google 10y ago The extensions subsystem in Google Chrome before 53.0.2785.113 does not properly restrict access to Object.prototype, which allows remote attackers to load unintended resources, and consequently trig…
CVE-2016-5172 medium 6.5 6.5 debian debian googlenodejs 10y ago The parser in Google V8, as used in Google Chrome before 53.0.2785.113, mishandles scopes, which allows remote attackers to obtain sensitive information from arbitrary memory locations via crafted Ja…
CVE-2016-5171 high 8.8 8.8 google 10y ago WebKit/Source/bindings/templates/interface.cpp in Blink, as used in Google Chrome before 53.0.2785.113, does not prevent certain constructor calls, which allows remote attackers to cause a denial of …
CVE-2016-5170 high 8.8 8.8 google 10y ago WebKit/Source/bindings/modules/v8/V8BindingForModules.cpp in Blink, as used in Google Chrome before 53.0.2785.113, does not properly consider getter side effects during array key conversion, which al…
CVE-2015-8960 high 8.1 8.1 sles ietfapplegoogle 10y ago The TLS protocol 1.2 and earlier supports the rsa_fixed_dh, dss_fixed_dh, rsa_fixed_ecdh, and ecdsa_fixed_ecdh values for ClientCertificateType but does not directly document the ability to compute t…
CVE-2016-7395 high 8.8 8.8 google 10y ago SkPath.cpp in Skia, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, does not properly validate the return values of ChopMonoAtY calls, which allows …
CVE-2016-5167 high 8.8 8.8 suse suse google 10y ago Multiple unspecified vulnerabilities in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux allow attackers to cause a denial of service or possibly have other impa…
CVE-2016-5165 medium 6.1 6.1 suse suse google 10y ago Cross-site scripting (XSS) vulnerability in the Developer Tools (aka DevTools) subsystem in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux allows remote attack…
CVE-2016-5164 medium 6.1 6.1 suse suse google 10y ago Cross-site scripting (XSS) vulnerability in WebKit/Source/platform/v8_inspector/V8Debugger.cpp in Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Li…
CVE-2016-5163 medium 4.3 4.3 suse suse google 10y ago The bidirectional-text implementation in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux does not ensure left-to-right (LTR) rendering of URLs, which allows rem…
CVE-2016-5162 medium 6.5 6.5 suse suse google 10y ago The AllowCrossRendererResourceLoad function in extensions/browser/url_request_util.cc in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux does not properly use a…
CVE-2016-5161 high 8.8 8.8 suse suse google 10y ago The EditingStyle::mergeStyle function in WebKit/Source/core/editing/EditingStyle.cpp in Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, misha…
CVE-2016-5160 medium 6.5 6.5 suse suse google 10y ago The AllowCrossRendererResourceLoad function in extensions/browser/url_request_util.cc in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux does not properly use a…
CVE-2016-5159 high 8.8 8.8 FIX suse susedebian debian google 10y ago Multiple integer overflows in OpenJPEG, as used in PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allow remote attackers to cause a denial of servic…
CVE-2016-5158 high 8.8 8.8 FIX suse susedebian debian google 10y ago Multiple integer overflows in the opj_tcd_init_tile function in tcd.c in OpenJPEG, as used in PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allow r…
CVE-2016-5157 high 8.8 8.8 FIX suse susefedora fedoradebian debian google 10y ago Heap-based buffer overflow in the opj_dwt_interleave_v function in dwt.c in OpenJPEG, as used in PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allo…
CVE-2016-5156 high 8.8 8.8 suse suse google 10y ago extensions/renderer/event_bindings.cc in the event bindings in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux attempts to process filtered events after failure…
CVE-2016-5155 medium 6.5 6.5 suse suse google 10y ago Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux does not properly validate access to the initial document, which allows remote attackers to spoof the address ba…
CVE-2016-5154 high 8.8 8.8 suse suse google 10y ago Multiple heap-based buffer overflows in PDFium, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allow remote attackers to cause a denial of service …
CVE-2016-5153 high 8.8 8.8 suse suse google 10y ago The Web Animations implementation in Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, improperly relies on list iteration, which allows remote…
CVE-2016-5152 high 8.8 8.8 FIX suse susedebian debian google 10y ago Integer overflow in the opj_tcd_get_decoded_tile_size function in tcd.c in OpenJPEG, as used in PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allow…
CVE-2016-5151 high 8.8 8.8 suse suse google 10y ago PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux mishandles timers, which allows remote attackers to cause a denial of service (use-after-free) or poss…
CVE-2016-5150 high 8.8 8.8 suse suse google 10y ago WebKit/Source/bindings/modules/v8/V8BindingForModules.cpp in Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, has an Indexed Database (aka Ind…
CVE-2016-5149 high 8.8 8.8 suse suse google 10y ago The extensions subsystem in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux relies on an IFRAME source URL to identify an associated extension, which allows rem…
CVE-2016-5148 medium 6.1 6.1 google 10y ago Cross-site scripting (XSS) vulnerability in Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to inject arbitrary web s…
CVE-2016-5147 medium 6.1 6.1 google 10y ago Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, mishandles deferred page loads, which allows remote attackers to inject arbitrary web script …
CVE-2016-7153 medium 5.3 5.3 microsoftgoogleapple 10y ago The HTTP/2 protocol does not consider the role of the TCP congestion window in providing information about content length, which makes it easier for remote attackers to obtain cleartext data by lever…
CVE-2016-7152 medium 5.3 5.3 operaapplemozilla 10y ago The HTTPS protocol does not consider the role of the TCP congestion window in providing information about content length, which makes it easier for remote attackers to obtain cleartext data by levera…
CVE-2016-5145 high 8.8 8.8 google 10y ago Blink, as used in Google Chrome before 52.0.2743.116, does not ensure that a taint property is preserved after a structure-clone operation on an ImageBitmap object derived from a cross-origin image, …
CVE-2016-5141 high 7.5 7.5 google 10y ago Blink, as used in Google Chrome before 52.0.2743.116, allows remote attackers to spoof the address bar via vectors involving a provisional URL for an initially empty document, related to FrameLoader.…
CVE-2016-5139 high 7.6 7.6 FIX debian debian google 10y ago Multiple integer overflows in the opj_tcd_init_tile function in tcd.c in OpenJPEG, as used in PDFium in Google Chrome before 52.0.2743.116, allow remote attackers to cause a denial of service (heap-b…
CVE-2016-5138 high 8.8 8.8 google 10y ago Integer overflow in the kbasep_vinstr_attach_client function in midgard/mali_kbase_vinstr.c in Google Chrome before 52.0.2743.85 allows remote attackers to cause a denial of service (heap-based buffe…
CVE-2016-5137 medium 4.3 4.3 google 10y ago The CSPSource::schemeMatches function in WebKit/Source/core/frame/csp/CSPSource.cpp in the Content Security Policy (CSP) implementation in Blink, as used in Google Chrome before 52.0.2743.82, does no…
CVE-2016-5136 high 8.8 8.8 google 10y ago Use-after-free vulnerability in extensions/renderer/user_script_injector.cc in the Extensions subsystem in Google Chrome before 52.0.2743.82 allows remote attackers to cause a denial of service or po…