|
265001
|
6.5 |
MEDIUM
Network
|
google
|
chrome
|
The extensions API in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android incorrectly handled navigation within PDFs, which allowed a remote attacker to tempo…
|
CWE-20
Improper Input Validation
|
CVE-2016-5218
|
2024-11-21 11:53 |
2017-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265002
|
6.5 |
MEDIUM
Network
|
google
|
chrome
|
The extensions API in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android incorrectly permitted access to privileged plugins, which allowed a remote attacker …
|
CWE-284
Improper Access Control
|
CVE-2016-5217
|
2024-11-21 11:53 |
2017-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265003
|
6.3 |
MEDIUM
Network
|
google
|
chrome
|
A use after free in PDFium in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to perform an out of bounds memory read via a craf…
|
CWE-416
Use After Free
|
CVE-2016-5216
|
2024-11-21 11:53 |
2017-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265004
|
6.3 |
MEDIUM
Network
|
google
|
chrome
|
A use after free in webaudio in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to perform an out of bounds memory read via a cr…
|
CWE-416
Use After Free
|
CVE-2016-5215
|
2024-11-21 11:53 |
2017-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265005
|
4.3 |
MEDIUM
Network
|
google
|
chrome
|
Google Chrome prior to 55.0.2883.75 for Windows mishandled downloaded files, which allowed a remote attacker to prevent the downloaded file from receiving the Mark of the Web via a crafted HTML page.
|
CWE-19
Data Processing Errors
|
CVE-2016-5214
|
2024-11-21 11:53 |
2017-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265006
|
8.8 |
HIGH
Network
|
google
|
chrome
|
A use after free in V8 in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption via a crafted H…
|
CWE-416
Use After Free
|
CVE-2016-5213
|
2024-11-21 11:53 |
2017-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265007
|
6.5 |
MEDIUM
Network
|
google
|
chrome
|
Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android insufficiently sanitized DevTools URLs, which allowed a remote attacker to read local files via a crafted …
|
CWE-200
Information Exposure
|
CVE-2016-5212
|
2024-11-21 11:53 |
2017-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265008
|
8.8 |
HIGH
Network
|
google
|
chrome
|
A use after free in PDFium in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption via a craft…
|
CWE-416
Use After Free
|
CVE-2016-5211
|
2024-11-21 11:53 |
2017-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265009
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Heap buffer overflow during TIFF image parsing in PDFium in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially explo…
|
CWE-787
Out-of-bounds Write
|
CVE-2016-5210
|
2024-11-21 11:53 |
2017-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265010
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Bad casting in bitmap manipulation in Blink in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corru…
|
CWE-787
Out-of-bounds Write
|
CVE-2016-5209
|
2024-11-21 11:53 |
2017-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
