|
267761
|
9.8 |
CRITICAL
Network
|
google
|
chrome
|
Multiple unspecified vulnerabilities in Google Chrome before 49.0.2623.75 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2016-1642
|
2024-11-21 11:46 |
2016-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267762
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Use-after-free vulnerability in content/browser/web_contents/web_contents_impl.cc in Google Chrome before 49.0.2623.75 allows remote attackers to cause a denial of service or possibly have unspecifie…
|
NVD-CWE-Other
|
CVE-2016-1641
|
2024-11-21 11:46 |
2016-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267763
|
4.3 |
MEDIUM
Network
|
google
|
chrome
|
The Web Store inline-installer implementation in the Extensions UI in Google Chrome before 49.0.2623.75 does not block installations upon deletion of an installation frame, which makes it easier for …
|
CWE-17
Code
|
CVE-2016-1640
|
2024-11-21 11:46 |
2016-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267764
|
9.8 |
CRITICAL
Network
|
google
|
chrome
|
Use-after-free vulnerability in browser/extensions/api/webrtc_audio_private/webrtc_audio_private_api.cc in the WebRTC Audio Private API implementation in Google Chrome before 49.0.2623.75 allows remo…
|
NVD-CWE-Other
|
CVE-2016-1639
|
2024-11-21 11:46 |
2016-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267765
|
6.3 |
MEDIUM
Network
|
google
|
chrome
|
extensions/renderer/resources/platform_app.js in the Extensions subsystem in Google Chrome before 49.0.2623.75 does not properly restrict use of Web APIs, which allows remote attackers to bypass inte…
|
CWE-284
Improper Access Control
|
CVE-2016-1638
|
2024-11-21 11:46 |
2016-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267766
|
6.5 |
MEDIUM
Network
|
google
|
chrome
|
The SkATan2_255 function in effects/gradients/SkSweepGradient.cpp in Skia, as used in Google Chrome before 49.0.2623.75, mishandles arctangent calculations, which allows remote attackers to obtain se…
|
CWE-200
Information Exposure
|
CVE-2016-1637
|
2024-11-21 11:46 |
2016-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267767
|
9.8 |
CRITICAL
Network
|
google
|
chrome
|
The PendingScript::notifyFinished function in WebKit/Source/core/dom/PendingScript.cpp in Google Chrome before 49.0.2623.75 relies on memory-cache information about integrity-check occurrences instea…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-1636
|
2024-11-21 11:46 |
2016-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267768
|
9.8 |
CRITICAL
Network
|
google
|
chrome
|
extensions/renderer/render_frame_observer_natives.cc in Google Chrome before 49.0.2623.75 does not properly consider object lifetimes and re-entrancy issues during OnDocumentElementCreated handling, …
|
NVD-CWE-Other
|
CVE-2016-1635
|
2024-11-21 11:46 |
2016-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267769
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Use-after-free vulnerability in the StyleResolver::appendCSSStyleSheet function in WebKit/Source/core/css/resolver/StyleResolver.cpp in Blink, as used in Google Chrome before 49.0.2623.75, allows rem…
|
NVD-CWE-Other
|
CVE-2016-1634
|
2024-11-21 11:46 |
2016-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267770
|
9.8 |
CRITICAL
Network
|
google
|
chrome
|
Use-after-free vulnerability in Blink, as used in Google Chrome before 49.0.2623.75, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
|
NVD-CWE-Other
|
CVE-2016-1633
|
2024-11-21 11:46 |
2016-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
