Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2013-6629 | 5.0 |
The get_sos function in jdmarker.c in (1) libjpeg 6b and (2) libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48, Ghostscript, and other products, does not check for certain duplications of component data during the reading of s
|
21-06-2023 - 18:19 | 19-11-2013 - 04:50 | |
CVE-2013-6632 | 9.3 |
Integer overflow in Google Chrome before 31.0.1650.57 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, as demonstrated during a Mobile Pwn2Own competition at PacSec 2013.
|
13-12-2018 - 17:58 | 18-11-2013 - 05:23 | |
CVE-2013-6621 | 7.5 |
Use-after-free vulnerability in Google Chrome before 31.0.1650.48 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the x-webkit-speech attribute in a text INPUT element.
|
30-10-2018 - 16:27 | 13-11-2013 - 15:55 | |
CVE-2013-2927 | 6.8 |
Use-after-free vulnerability in the HTMLFormElement::prepareForSubmission function in core/html/HTMLFormElement.cpp in Blink, as used in Google Chrome before 30.0.1599.101, allows remote attackers to cause a denial of service or possibly have unspeci
|
30-10-2018 - 16:27 | 16-10-2013 - 20:55 | |
CVE-2013-2919 | 7.5 |
Google V8, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.
|
30-10-2018 - 16:27 | 02-10-2013 - 10:35 | |
CVE-2013-6622 | 6.8 |
Use-after-free vulnerability in the HTMLMediaElement::didMoveToNewDocument function in core/html/HTMLMediaElement.cpp in Blink, as used in Google Chrome before 31.0.1650.48, allows remote attackers to cause a denial of service or possibly have unspec
|
19-09-2017 - 01:36 | 13-11-2013 - 15:55 | |
CVE-2013-6627 | 5.0 |
net/http/http_stream_parser.cc in Google Chrome before 31.0.1650.48 does not properly process HTTP Informational (aka 1xx) status codes, which allows remote web servers to cause a denial of service (out-of-bounds read) via a crafted response.
|
19-09-2017 - 01:36 | 13-11-2013 - 15:55 | |
CVE-2013-6628 | 4.3 |
net/socket/ssl_client_socket_nss.cc in the TLS implementation in Google Chrome before 31.0.1650.48 does not ensure that a server's X.509 certificate is the same during renegotiation as it was before renegotiation, which might allow remote web servers
|
19-09-2017 - 01:36 | 13-11-2013 - 15:55 | |
CVE-2013-6623 | 4.3 |
The SVG implementation in Blink, as used in Google Chrome before 31.0.1650.48, allows remote attackers to cause a denial of service (out-of-bounds read) by leveraging the use of tree order, rather than transitive dependency order, for layout.
|
19-09-2017 - 01:36 | 13-11-2013 - 15:55 | |
CVE-2013-6625 | 6.8 |
Use-after-free vulnerability in core/dom/ContainerNode.cpp in Blink, as used in Google Chrome before 31.0.1650.48, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper handling of DOM r
|
19-09-2017 - 01:36 | 13-11-2013 - 15:55 | |
CVE-2013-6624 | 7.5 |
Use-after-free vulnerability in Google Chrome before 31.0.1650.48 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving the string values of id attributes. CWE-416: Use After Free per htt
|
19-09-2017 - 01:36 | 13-11-2013 - 15:55 | |
CVE-2013-6626 | 4.3 |
The WebContentsImpl::AttachInterstitialPage function in content/browser/web_contents/web_contents_impl.cc in Google Chrome before 31.0.1650.48 does not cancel JavaScript dialogs upon generating an interstitial warning, which allows remote attackers t
|
19-09-2017 - 01:36 | 13-11-2013 - 15:55 | |
CVE-2013-2924 | 7.5 |
Use-after-free vulnerability in International Components for Unicode (ICU), as used in Google Chrome before 30.0.1599.66 and other products, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown ve
|
19-09-2017 - 01:36 | 02-10-2013 - 10:35 | |
CVE-2013-2922 | 6.8 |
Use-after-free vulnerability in core/html/HTMLTemplateElement.cpp in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code that
|
19-09-2017 - 01:36 | 02-10-2013 - 10:35 | |
CVE-2013-2907 | 5.0 |
The Window.prototype object implementation in Google Chrome before 30.0.1599.66 allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
|
19-09-2017 - 01:36 | 02-10-2013 - 10:35 | |
CVE-2013-2923 | 7.5 |
Multiple unspecified vulnerabilities in Google Chrome before 30.0.1599.66 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
|
19-09-2017 - 01:36 | 02-10-2013 - 10:35 | |
CVE-2013-2916 | 4.3 |
Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to spoof the address bar via vectors involving a response with a 204 (aka No Content) status code, in conjunction with a delay in notifying the user of an attempted spoof.
|
19-09-2017 - 01:36 | 02-10-2013 - 10:35 | |
CVE-2013-2908 | 5.0 |
Google Chrome before 30.0.1599.66 uses incorrect function calls to determine the values of NavigationEntry objects, which allows remote attackers to spoof the address bar via vectors involving a response with a 204 (aka No Content) status code.
|
19-09-2017 - 01:36 | 02-10-2013 - 10:35 | |
CVE-2013-2925 | 6.8 |
Use-after-free vulnerability in core/xml/XMLHttpRequest.cpp in Blink, as used in Google Chrome before 30.0.1599.101, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger multiple conf
|
19-09-2017 - 01:36 | 16-10-2013 - 20:55 | |
CVE-2013-2909 | 7.5 |
Use-after-free vulnerability in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to inline-block rendering for bidirectional Unicod
|
19-09-2017 - 01:36 | 02-10-2013 - 10:35 | |
CVE-2013-2910 | 7.5 |
Use-after-free vulnerability in modules/webaudio/AudioScheduledSourceNode.cpp in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service or possibly have unspecified ot
|
19-09-2017 - 01:36 | 02-10-2013 - 10:35 | |
CVE-2013-2918 | 7.5 |
Use-after-free vulnerability in the RenderBlock::collapseAnonymousBlockChild function in core/rendering/RenderBlock.cpp in the DOM implementation in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of ser
|
19-09-2017 - 01:36 | 02-10-2013 - 10:35 | |
CVE-2013-2911 | 6.8 |
Use-after-free vulnerability in the XSLStyleSheet::compileStyleSheet function in core/xml/XSLStyleSheetLibxslt.cpp in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service or possibly have unspecifi
|
19-09-2017 - 01:36 | 02-10-2013 - 10:35 | |
CVE-2013-2921 | 6.8 |
Double free vulnerability in the ResourceFetcher::didLoadResource function in core/fetch/ResourceFetcher.cpp in the resource loader in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service or possib
|
19-09-2017 - 01:36 | 02-10-2013 - 10:35 | |
CVE-2013-2926 | 6.8 |
Use-after-free vulnerability in the IndentOutdentCommand::tryIndentingAsListItem function in core/editing/IndentOutdentCommand.cpp in Blink, as used in Google Chrome before 30.0.1599.101, allows user-assisted remote attackers to cause a denial of ser
|
19-09-2017 - 01:36 | 16-10-2013 - 20:55 | |
CVE-2013-2906 | 6.8 |
Multiple race conditions in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to threading in core/ht
|
19-09-2017 - 01:36 | 02-10-2013 - 10:35 | |
CVE-2013-2920 | 5.0 |
The DoResolveRelativeHost function in url/url_canon_relative.cc in Google Chrome before 30.0.1599.66 allows remote attackers to cause a denial of service (out-of-bounds read) via a relative URL containing a hostname, as demonstrated by a protocol-rel
|
19-09-2017 - 01:36 | 02-10-2013 - 10:35 | |
CVE-2013-2913 | 6.8 |
Use-after-free vulnerability in the XMLDocumentParser::append function in core/xml/parser/XMLDocumentParser.cpp in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service or possibly have unspecified
|
19-09-2017 - 01:36 | 02-10-2013 - 10:35 | |
CVE-2013-2914 | 6.8 |
Use-after-free vulnerability in the color-chooser dialog in Google Chrome before 30.0.1599.66 on Windows allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to color_chooser_dialog.cc and
|
19-09-2017 - 01:36 | 02-10-2013 - 10:35 | |
CVE-2013-2915 | 4.3 |
Google Chrome before 30.0.1599.66 preserves pending NavigationEntry objects in certain invalid circumstances, which allows remote attackers to spoof the address bar via a URL with a malformed scheme, as demonstrated by a nonexistent:12121 URL.
|
19-09-2017 - 01:36 | 02-10-2013 - 10:35 | |
CVE-2013-2931 | 10.0 |
Multiple unspecified vulnerabilities in Google Chrome before 31.0.1650.48 allow attackers to execute arbitrary code or possibly have other impact via unknown vectors.
|
19-09-2017 - 01:36 | 13-11-2013 - 15:55 | |
CVE-2013-2928 | 7.5 |
Multiple unspecified vulnerabilities in Google Chrome before 30.0.1599.101 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
|
19-09-2017 - 01:36 | 16-10-2013 - 20:55 | |
CVE-2013-2912 | 7.5 |
Use-after-free vulnerability in the PepperInProcessRouter::SendToHost function in content/renderer/pepper/pepper_in_process_router.cc in the Pepper Plug-in API (PPAPI) in Google Chrome before 30.0.1599.66 allows remote attackers to cause a denial of
|
19-09-2017 - 01:36 | 02-10-2013 - 10:35 | |
CVE-2013-2917 | 5.0 |
The ReverbConvolverStage::ReverbConvolverStage function in core/platform/audio/ReverbConvolverStage.cpp in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service (out-
|
19-09-2017 - 01:36 | 02-10-2013 - 10:35 | |
CVE-2013-6635 | 6.8 |
Use-after-free vulnerability in the editing implementation in Blink, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of service or possibly have unspecified other impact via JavaScript code that triggers remova
|
08-12-2016 - 03:04 | 07-12-2013 - 00:55 | |
CVE-2013-6630 | 5.0 |
The get_dht function in jdmarker.c in libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48 and other products, does not set all elements of a certain Huffman value array during the reading of segments that follow Define Huffman T
|
04-10-2016 - 01:59 | 19-11-2013 - 04:50 | |
CVE-2013-6638 | 7.5 |
Multiple buffer overflows in runtime.cc in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger a large typed
|
06-03-2014 - 04:49 | 07-12-2013 - 00:55 | |
CVE-2013-6636 | 4.3 |
The FrameLoader::notifyIfInitialDocumentAccessed function in core/loader/FrameLoader.cpp in Blink, as used in Google Chrome before 31.0.1650.63, makes an incorrect check for an empty document during presentation of a modal dialog, which allows remote
|
06-03-2014 - 04:49 | 07-12-2013 - 00:55 | |
CVE-2013-6631 | 7.5 |
Use-after-free vulnerability in the Channel::SendRTCPPacket function in voice_engine/channel.cc in libjingle in WebRTC, as used in Google Chrome before 31.0.1650.48 and other products, allows remote attackers to cause a denial of service (heap memory
|
06-03-2014 - 04:49 | 19-11-2013 - 04:50 | |
CVE-2013-6639 | 7.5 |
The DehoistArrayIndex function in hydrogen-dehoist.cc (aka hydrogen.cc) in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecifi
|
06-03-2014 - 04:49 | 07-12-2013 - 00:55 | |
CVE-2013-6640 | 7.5 |
The DehoistArrayIndex function in hydrogen-dehoist.cc (aka hydrogen.cc) in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of service (out-of-bounds read) via JavaScript code that se
|
06-03-2014 - 04:49 | 07-12-2013 - 00:55 | |
CVE-2013-6634 | 6.8 |
The OneClickSigninHelper::ShowInfoBarIfPossible function in browser/ui/sync/one_click_signin_helper.cc in Google Chrome before 31.0.1650.63 uses an incorrect URL during realm validation, which allows remote attackers to conduct session fixation attac
|
06-03-2014 - 04:49 | 07-12-2013 - 00:55 | |
CVE-2013-6637 | 7.5 |
Multiple unspecified vulnerabilities in Google Chrome before 31.0.1650.63 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
|
06-03-2014 - 04:49 | 07-12-2013 - 00:55 |