Max CVSS | 7.5 | Min CVSS | 5.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2016-5139 | 6.8 |
Multiple integer overflows in the opj_tcd_init_tile function in tcd.c in OpenJPEG, as used in PDFium in Google Chrome before 52.0.2743.116, allow remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified
|
21-07-2018 - 01:29 | 07-08-2016 - 19:59 | |
CVE-2016-5140 | 7.5 |
Heap-based buffer overflow in the opj_j2k_read_SQcd_SQcc function in j2k.c in OpenJPEG, as used in PDFium in Google Chrome before 52.0.2743.116, allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafte
|
01-07-2017 - 01:29 | 07-08-2016 - 19:59 | |
CVE-2016-5145 | 6.8 |
Blink, as used in Google Chrome before 52.0.2743.116, does not ensure that a taint property is preserved after a structure-clone operation on an ImageBitmap object derived from a cross-origin image, which allows remote attackers to bypass the Same Or
|
01-07-2017 - 01:29 | 07-08-2016 - 19:59 | |
CVE-2016-5142 | 7.5 |
The Web Cryptography API (aka WebCrypto) implementation in Blink, as used in Google Chrome before 52.0.2743.116, does not properly copy data buffers, which allows remote attackers to cause a denial of service (use-after-free) or possibly have unspeci
|
01-07-2017 - 01:29 | 07-08-2016 - 19:59 | |
CVE-2016-5146 | 7.5 |
Multiple unspecified vulnerabilities in Google Chrome before 52.0.2743.116 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
|
01-07-2017 - 01:29 | 07-08-2016 - 19:59 | |
CVE-2016-5141 | 5.0 |
Blink, as used in Google Chrome before 52.0.2743.116, allows remote attackers to spoof the address bar via vectors involving a provisional URL for an initially empty document, related to FrameLoader.cpp and ScopedPageLoadDeferrer.cpp.
|
01-07-2017 - 01:29 | 07-08-2016 - 19:59 | |
CVE-2016-5143 | 7.5 |
The Developer Tools (aka DevTools) subsystem in Blink, as used in Google Chrome before 52.0.2743.116, mishandles the script-path hostname, remoteBase parameter, and remoteFrontendUrl parameter, which allows remote attackers to bypass intended access
|
01-07-2017 - 01:29 | 07-08-2016 - 19:59 | |
CVE-2016-5144 | 7.5 |
The Developer Tools (aka DevTools) subsystem in Blink, as used in Google Chrome before 52.0.2743.116, mishandles the script-path hostname, remoteBase parameter, and remoteFrontendUrl parameter, which allows remote attackers to bypass intended access
|
01-07-2017 - 01:29 | 07-08-2016 - 19:59 |