Chromium

chromium

Vendor: Chromium • 8 CVEs

CVEs (8)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-1531 3Chromium FedoraprojectGoogle 3Chrome ChromiumFedora Nov 21, 2024 Mar 21, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Use after free in ANGLE in Google Chrome prior to 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2017-7000 4Apple ChromiumDebian+1 more 7Chromium Debian LinuxEnterprise Linux Desktop+4 more Nov 21, 2024 Apr 3, 2018 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. The issue involves the "SQLite" component. It allows remote attackers to execute arbitrary code or cause...Show more An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. The issue involves the "SQLite" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.Show less
CVE-2015-1346 3Canonical ChromiumGoogle 4Chrome ChromiumUbuntu Linux+1 more May 6, 2026 Jan 22, 2015 N/A· v4 N/A· v3 7.5 HIGH· v2 Multiple unspecified vulnerabilities in Google V8 before 3.30.33.15, as used in Google Chrome before 40.0.2214.91, allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
CVE-2015-1205 3Canonical ChromiumGoogle 3Chrome ChromiumUbuntu Linux May 6, 2026 Jan 22, 2015 N/A· v4 N/A· v3 7.5 HIGH· v2 Multiple unspecified vulnerabilities in Google Chrome before 40.0.2214.91 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
CVE-2014-7943 5Canonical ChromiumGoogle+2 more 8Chrome ChromiumEnterprise Linux Desktop Supplementary+5 more May 6, 2026 Jan 22, 2015 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Skia, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
CVE-2014-7942 5Canonical ChromiumGoogle+2 more 8Chrome ChromiumEnterprise Linux Desktop Supplementary+5 more May 6, 2026 Jan 22, 2015 N/A· v4 N/A· v3 7.5 HIGH· v2 The Fonts implementation in Google Chrome before 40.0.2214.91 does not initialize memory for a data structure, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unkn...Show more The Fonts implementation in Google Chrome before 40.0.2214.91 does not initialize memory for a data structure, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.Show less
CVE-2014-7941 4Chromium GoogleOpensuse+1 more 7Chrome ChromiumEnterprise Linux Desktop Supplementary+4 more May 6, 2026 Jan 22, 2015 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The SelectionOwner::ProcessTarget function in ui/base/x/selection_owner.cc in the UI implementation in Google Chrome before 40.0.2214.91 uses an incorrect data type for a certain length value, which allows remote attacke...Show more The SelectionOwner::ProcessTarget function in ui/base/x/selection_owner.cc in the UI implementation in Google Chrome before 40.0.2214.91 uses an incorrect data type for a certain length value, which allows remote attackers to cause a denial of service (out-of-bounds read) via crafted X11 data.Show less
CVE-2014-7939 4Chromium GoogleOpensuse+1 more 7Chrome ChromiumEnterprise Linux Desktop Supplementary+4 more May 6, 2026 Jan 22, 2015 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Google Chrome before 40.0.2214.91, when the Harmony proxy in Google V8 is enabled, allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code with Proxy.create and console.log calls, related to...Show more Google Chrome before 40.0.2214.91, when the Harmony proxy in Google V8 is enabled, allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code with Proxy.create and console.log calls, related to HTTP responses that lack an "X-Content-Type-Options: nosniff" header.Show less