| Max CVSS | 10.0 | Min CVSS | 2.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-1669 | 9.3 |
The Zone::New function in zone.cc in Google V8 before 5.0.71.47, as used in Google Chrome before 50.0.2661.102, does not properly determine when to expand certain memory allocations, which allows remote attackers to cause a denial of service (buffer
|
19-01-2023 - 16:26 | 14-05-2016 - 21:59 | |
| CVE-2016-1664 | 4.3 |
The HistoryController::UpdateForCommit function in content/renderer/history_controller.cc in Google Chrome before 50.0.2661.94 mishandles the interaction between subframe forward navigations and other forward navigations, which allows remote attacker
|
30-10-2018 - 16:27 | 14-05-2016 - 21:59 | |
| CVE-2016-1665 | 4.3 |
The JSGenericLowering class in compiler/js-generic-lowering.cc in Google V8, as used in Google Chrome before 50.0.2661.94, mishandles comparison operators, which allows remote attackers to obtain sensitive information via crafted JavaScript code.
|
30-10-2018 - 16:27 | 14-05-2016 - 21:59 | |
| CVE-2016-1667 | 6.8 |
The TreeScope::adoptIfNeeded function in WebKit/Source/core/dom/TreeScope.cpp in the DOM implementation in Blink, as used in Google Chrome before 50.0.2661.102, does not prevent script execution during node-adoption operations, which allows remote at
|
30-10-2018 - 16:27 | 14-05-2016 - 21:59 | |
| CVE-2016-1661 | 8.3 |
Blink, as used in Google Chrome before 50.0.2661.94, does not ensure that frames satisfy a check for the same renderer process in addition to a Same Origin Policy check, which allows remote attackers to cause a denial of service (memory corruption) o
|
30-10-2018 - 16:27 | 14-05-2016 - 21:59 | |
| CVE-2016-1668 | 6.8 |
The forEachForBinding function in WebKit/Source/bindings/core/v8/Iterable.h in the V8 bindings in Blink, as used in Google Chrome before 50.0.2661.102, uses an improper creation context, which allows remote attackers to bypass the Same Origin Policy
|
30-10-2018 - 16:27 | 14-05-2016 - 21:59 | |
| CVE-2016-1704 | 6.8 |
Multiple unspecified vulnerabilities in Google Chrome before 51.0.2704.103 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
|
30-10-2018 - 16:27 | 03-07-2016 - 21:59 | |
| CVE-2016-1666 | 7.5 |
Multiple unspecified vulnerabilities in Google Chrome before 50.0.2661.94 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
|
30-10-2018 - 16:27 | 14-05-2016 - 21:59 | |
| CVE-2016-1663 | 6.8 |
The SerializedScriptValue::transferArrayBuffers function in WebKit/Source/bindings/core/v8/SerializedScriptValue.cpp in the V8 bindings in Blink, as used in Google Chrome before 50.0.2661.94, mishandles certain array-buffer data structures, which all
|
30-10-2018 - 16:27 | 14-05-2016 - 21:59 | |
| CVE-2016-1670 | 2.6 |
Race condition in the ResourceDispatcherHostImpl::BeginRequest function in content/browser/loader/resource_dispatcher_host_impl.cc in Google Chrome before 50.0.2661.102 allows remote attackers to make arbitrary HTTP requests by leveraging access to a
|
30-10-2018 - 16:27 | 14-05-2016 - 21:59 | |
| CVE-2016-1660 | 6.8 |
Blink, as used in Google Chrome before 50.0.2661.94, mishandles assertions in the WTF::BitArray and WTF::double_conversion::Vector classes, which allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified
|
30-10-2018 - 16:27 | 14-05-2016 - 21:59 | |
| CVE-2016-1662 | 10.0 |
extensions/renderer/gc_callback.cc in Google Chrome before 50.0.2661.94 does not prevent fallback execution once the Garbage Collection callback has started, which allows remote attackers to cause a denial of service (use-after-free) or possibly have
|
30-10-2018 - 16:27 | 14-05-2016 - 21:59 |