Google

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2010-1770 5Apple CanonicalGoogle+2 more 7Chrome OpensuseSafari+4 more Apr 29, 2026 Jun 11, 2010 N/A· v4 N/A· v3 9.3 HIGH· v2 WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, Apple Safari before 4.1 on Mac OS X 10.4, and Google Chrome before 5.0.375.70 does not properly handle a transformation of a text node that has...Show more WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, Apple Safari before 4.1 on Mac OS X 10.4, and Google Chrome before 5.0.375.70 does not properly handle a transformation of a text node that has the IBM1147 character set, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document containing a BR element, related to a "type checking issue."Show less
CVE-2010-2120 1Google 1Chrome Apr 29, 2026 Jun 1, 2010 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Google Chrome 1.0.154.48 allows remote attackers to cause a denial of service (resource consumption) via JavaScript code containing an infinite loop that creates IFRAME elements for invalid news:// URIs.
CVE-2010-2110 1Google 1Chrome Apr 29, 2026 May 28, 2010 N/A· v4 N/A· v3 7.5 HIGH· v2 Google Chrome before 5.0.375.55 does not properly execute JavaScript code in the extension context, which has unspecified impact and remote attack vectors.
CVE-2010-2109 1Google 1Chrome Apr 29, 2026 May 28, 2010 N/A· v4 N/A· v3 7.5 HIGH· v2 Unspecified vulnerability in Google Chrome before 5.0.375.55 allows user-assisted remote attackers to cause a denial of service (memory error) or possibly have unspecified other impact via vectors related to the "drag +...Show more Unspecified vulnerability in Google Chrome before 5.0.375.55 allows user-assisted remote attackers to cause a denial of service (memory error) or possibly have unspecified other impact via vectors related to the "drag + drop" functionality.Show less
CVE-2010-2108 1Google 1Chrome Apr 29, 2026 May 28, 2010 N/A· v4 N/A· v3 7.5 HIGH· v2 Unspecified vulnerability in Google Chrome before 5.0.375.55 allows remote attackers to bypass the whitelist-mode plugin blocker via unknown vectors.
CVE-2010-2107 1Google 1Chrome Apr 29, 2026 May 28, 2010 N/A· v4 N/A· v3 10.0 HIGH· v2 Unspecified vulnerability in Google Chrome before 5.0.375.55 allows attackers to cause a denial of service (memory error) or possibly have unspecified other impact via vectors related to the Safe Browsing functionality.
CVE-2010-2106 1Google 1Chrome Apr 29, 2026 May 28, 2010 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Unspecified vulnerability in Google Chrome before 5.0.375.55 might allow remote attackers to spoof the URL bar via vectors involving unload event handlers.
CVE-2010-2105 1Google 1Chrome Apr 29, 2026 May 28, 2010 N/A· v4 N/A· v3 10.0 HIGH· v2 Google Chrome before 5.0.375.55 does not properly follow the Safe Browsing specification's requirements for canonicalization of URLs, which has unspecified impact and remote attack vectors.
CVE-2010-1992 1Google 1Chrome Apr 29, 2026 May 20, 2010 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Google Chrome 1.0.154.48 executes a mail application in situations where an IFRAME element has a mailto: URL in its SRC attribute, which allows remote attackers to cause a denial of service (excessive application launche...Show more Google Chrome 1.0.154.48 executes a mail application in situations where an IFRAME element has a mailto: URL in its SRC attribute, which allows remote attackers to cause a denial of service (excessive application launches) via an HTML document with many IFRAME elements.Show less
CVE-2010-1851 1Google 1Chrome Apr 29, 2026 May 7, 2010 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Google Chrome, when the Invisible Hand extension is enabled, uses cookies during background HTTP requests in a possibly unexpected manner, which might allow remote web servers to identify specific persons and their produ...Show more Google Chrome, when the Invisible Hand extension is enabled, uses cookies during background HTTP requests in a possibly unexpected manner, which might allow remote web servers to identify specific persons and their product searches via HTTP request logging, related to a "cross-site data leakage" issue.Show less
CVE-2010-1731 1Google 1Chrome Apr 29, 2026 May 6, 2010 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Google Chrome on the HTC Hero allows remote attackers to cause a denial of service (application crash) via JavaScript that writes <marquee> sequences in an infinite loop.
CVE-2010-1665 1Google 1Chrome Apr 29, 2026 May 3, 2010 N/A· v4 N/A· v3 7.5 HIGH· v2 Google Chrome before 4.1.249.1064 does not properly handle fonts, which allows remote attackers to cause a denial of service (memory corruption) and possibly have unspecified other impact via unknown vectors.
CVE-2010-1664 1Google 1Chrome Apr 29, 2026 May 3, 2010 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Google Chrome before 4.1.249.1064 does not properly handle HTML5 media, which allows remote attackers to cause a denial of service (memory corruption) and possibly have unspecified other impact via unknown vectors.
CVE-2010-1663 1Google 1Chrome Apr 29, 2026 May 3, 2010 N/A· v4 N/A· v3 10.0 HIGH· v2 The Google URL Parsing Library (aka google-url or GURL) in Google Chrome before 4.1.249.1064 allows remote attackers to bypass the Same Origin Policy via unspecified vectors.
CVE-2010-1506 1Google 1Chrome Apr 29, 2026 Apr 23, 2010 N/A· v4 N/A· v3 7.8 HIGH· v2 The Google V8 bindings in Google Chrome before 4.1.249.1059 allow attackers to cause a denial of service (memory corruption) via unknown vectors.
CVE-2010-1505 1Google 1Chrome Apr 29, 2026 Apr 23, 2010 N/A· v4 N/A· v3 10.0 HIGH· v2 Google Chrome before 4.1.249.1059 does not prevent pages from loading with the New Tab page's privileges, which has unknown impact and attack vectors.
CVE-2010-1504 1Google 1Chrome Apr 29, 2026 Apr 23, 2010 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Cross-site scripting (XSS) vulnerability in Google Chrome before 4.1.249.1059 allows remote attackers to inject arbitrary web script or HTML via vectors related to a chrome://downloads URI.
CVE-2010-1503 1Google 1Chrome Apr 29, 2026 Apr 23, 2010 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Cross-site scripting (XSS) vulnerability in Google Chrome before 4.1.249.1059 allows remote attackers to inject arbitrary web script or HTML via vectors related to a chrome://net-internals URI.
CVE-2010-1502 1Google 1Chrome Apr 29, 2026 Apr 23, 2010 N/A· v4 N/A· v3 9.3 HIGH· v2 Unspecified vulnerability in Google Chrome before 4.1.249.1059 allows remote attackers to access local files via vectors related to "developer tools."
CVE-2010-1500 1Google 1Chrome Apr 29, 2026 Apr 23, 2010 N/A· v4 N/A· v3 7.5 HIGH· v2 Google Chrome before 4.1.249.1059 does not properly support forms, which has unknown impact and attack vectors, related to a "type confusion error."

Previous 1...681682683...688 Next