Google

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2011-2747 1Google 1Picasa Apr 29, 2026 Jul 28, 2011 N/A· v4 N/A· v3 9.3 HIGH· v2 Google Picasa before 3.6 Build 105.67 does not properly handle invalid properties in JPEG images, which allows remote attackers to execute arbitrary code via a crafted image file.
CVE-2011-1339 1Google 1Search Appliance Apr 29, 2026 Jul 28, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Cross-site scripting (XSS) vulnerability in Google Search Appliance before 5.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2011-2761 1Google 1Chrome Apr 29, 2026 Jul 18, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Google Chrome 14.0.794.0 does not properly handle a reload of a page generated in response to a POST, which allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted web site, r...Show more Google Chrome 14.0.794.0 does not properly handle a reload of a page generated in response to a POST, which allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted web site, related to GetWidget methods.Show less
CVE-2011-2344 1Google 1Android Apr 29, 2026 Jul 8, 2011 N/A· v4 N/A· v3 10.0 HIGH· v2 Android Picasa in Android 3.0 and 2.x through 2.3.4 uses a cleartext HTTP session when transmitting the authToken obtained from ClientLogin, which allows remote attackers to gain privileges and access private pictures an...Show more Android Picasa in Android 3.0 and 2.x through 2.3.4 uses a cleartext HTTP session when transmitting the authToken obtained from ClientLogin, which allows remote attackers to gain privileges and access private pictures and web albums by sniffing the token from connections with picasaweb.google.com.Show less
CVE-2011-1001 1Google 1Android Sdk Apr 29, 2026 Jul 8, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 dexdump in Android SDK before 2.3 does not properly perform structural verification, which allows user-assisted remote attackers to cause a denial of service (dexdump crash) and possibly execute arbitrary code via a malf...Show more dexdump in Android SDK before 2.3 does not properly perform structural verification, which allows user-assisted remote attackers to cause a denial of service (dexdump crash) and possibly execute arbitrary code via a malformed APK or dex file that calls a method using more arguments than the number of register that have been declared for that method.Show less
CVE-2011-2599 1Google 1Chrome Apr 29, 2026 Jun 30, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Google Chrome 11 does not block use of a cross-domain image as a WebGL texture, which allows remote attackers to obtain approximate copies of arbitrary images via a timing attack involving a crafted WebGL fragment shader...Show more Google Chrome 11 does not block use of a cross-domain image as a WebGL texture, which allows remote attackers to obtain approximate copies of arbitrary images via a timing attack involving a crafted WebGL fragment shader.Show less
CVE-2011-2351 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Jun 29, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in Google Chrome before 12.0.742.112 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving SVG use elements.
CVE-2011-2350 1Google 1Chrome Apr 29, 2026 Jun 29, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 The HTML parser in Google Chrome before 12.0.742.112 does not properly address "lifetime and re-entrancy issues," which allows remote attackers to cause a denial of service or possibly have unspecified other impact via u...Show more The HTML parser in Google Chrome before 12.0.742.112 does not properly address "lifetime and re-entrancy issues," which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.Show less
CVE-2011-2349 1Google 1Chrome Apr 29, 2026 Jun 29, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in Google Chrome before 12.0.742.112 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to text selection.
CVE-2011-2348 1Google 1Chrome Apr 29, 2026 Jun 29, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Google V8, as used in Google Chrome before 12.0.742.112, performs an incorrect bounds check, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
CVE-2011-2347 1Google 1Chrome Apr 29, 2026 Jun 29, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Google Chrome before 12.0.742.112 does not properly handle Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other i...Show more Google Chrome before 12.0.742.112 does not properly handle Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.Show less
CVE-2011-2346 1Google 1Chrome Apr 29, 2026 Jun 29, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in Google Chrome before 12.0.742.112 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving SVG fonts.
CVE-2011-2345 1Google 1Chrome Apr 29, 2026 Jun 29, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 The NPAPI implementation in Google Chrome before 12.0.742.112 does not properly handle strings, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
CVE-2011-2342 1Google 1Chrome Apr 29, 2026 Jun 9, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 The DOM implementation in Google Chrome before 12.0.742.91 allows remote attackers to bypass the Same Origin Policy via unspecified vectors.
CVE-2011-2332 1Google 1Chrome Apr 29, 2026 Jun 9, 2011 N/A· v4 N/A· v3 7.5 HIGH· v2 Google V8, as used in Google Chrome before 12.0.742.91, allows remote attackers to bypass the Same Origin Policy via unspecified vectors.
CVE-2011-1819 1Google 1Chrome Apr 29, 2026 Jun 9, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Google Chrome before 12.0.742.91 allows remote attackers to perform unspecified injection into a chrome:// page via vectors related to extensions.
CVE-2011-1818 1Google 1Chrome Apr 29, 2026 Jun 9, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in the image loader in Google Chrome before 12.0.742.91 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
CVE-2011-1817 1Google 1Chrome Apr 29, 2026 Jun 9, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Google Chrome before 12.0.742.91 does not properly implement history deletion, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.
CVE-2011-1816 1Google 1Chrome Apr 29, 2026 Jun 9, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in the developer tools in Google Chrome before 12.0.742.91 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
CVE-2011-1815 1Google 1Chrome Apr 29, 2026 Jun 9, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Google Chrome before 12.0.742.91 allows remote attackers to inject script into a tab page via vectors related to extensions.

Previous 1...668669670...688 Next