Vulnerability & Exploit Database

Displaying entries 1 - 10 of 84 in total

Results for: CVE-2018-4330 Back to search

Google Chrome Vulnerability: CVE-2018-17470 Vulnerability

  • Severity: 4
  • Published: January 09, 2019

A heap buffer overflow in GPU in Google Chrome prior to 70.0.3538.67 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.

Gentoo Linux: CVE-2018-17470: Chromium: Multiple vulnerabilities Vulnerability

  • Severity: 4
  • Published: November 23, 2018

A heap buffer overflow in GPU in Google Chrome prior to 70.0.3538.67 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.

Google Chrome Vulnerability: CVE-2018-17477 Vulnerability

  • Severity: 4
  • Published: November 14, 2018

Incorrect dialog placement in Extensions in Google Chrome prior to 70.0.3538.67 allowed a remote attacker to spoof the contents of extension popups via a crafted HTML page.

Google Chrome Vulnerability: CVE-2018-17476 Vulnerability

  • Severity: 4
  • Published: November 14, 2018

Incorrect dialog placement in Cast UI in Google Chrome prior to 70.0.3538.67 allowed a remote attacker to obscure the full screen warning via a crafted HTML page.

Google Chrome Vulnerability: CVE-2018-17475 Vulnerability

  • Severity: 4
  • Published: November 14, 2018

Incorrect handling of history on iOS in Navigation in Google Chrome prior to 70.0.3538.67 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.

Google Chrome Vulnerability: CVE-2018-17474 Vulnerability

  • Severity: 7
  • Published: November 14, 2018

Use after free in HTMLImportsController in Blink in Google Chrome prior to 70.0.3538.67 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Google Chrome Vulnerability: CVE-2018-17473 Vulnerability

  • Severity: 4
  • Published: November 14, 2018

Incorrect handling of confusable characters in Omnibox in Google Chrome prior to 70.0.3538.67 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name.