This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:google:chrome:4.0.242.0
Detail
VendorGoogleFirst view 2010-01-14
ProductChromeLast view2016-07-03
Version4.0.242.0TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:google:chrome

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
6.82016-07-03CVE-2016-1704NetworkMediumNone Requ...
6.82016-06-05CVE-2016-1703NetworkMediumNone Requ...
4.32016-06-05CVE-2016-1702NetworkMediumNone Requ...
6.82016-06-05CVE-2016-1701NetworkMediumNone Requ...
5.12016-06-05CVE-2016-1700NetworkHighNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
4.32016-06-05CVE-2016-1699NetworkMediumNone Requ...
4.32016-06-05CVE-2016-1698NetworkMediumNone Requ...
6.82016-06-05CVE-2016-1697NetworkMediumNone Requ...
6.82016-06-05CVE-2016-1696NetworkMediumNone Requ...
6.82016-06-05CVE-2016-1695NetworkMediumNone Requ...
4.32016-06-05CVE-2016-1694NetworkMediumNone Requ...
2.62016-06-05CVE-2016-1693NetworkHighNone Requ...
4.32016-06-05CVE-2016-1692NetworkMediumNone Requ...
5.12016-06-05CVE-2016-1691NetworkHighNone Requ...
5.12016-06-05CVE-2016-1690NetworkHighNone Requ...
4.32016-06-05CVE-2016-1689NetworkMediumNone Requ...
4.32016-06-05CVE-2016-1688NetworkMediumNone Requ...
4.32016-06-05CVE-2016-1687NetworkMediumNone Requ...
4.32016-06-05CVE-2016-1686NetworkMediumNone Requ...
4.32016-06-05CVE-2016-1685NetworkMediumNone Requ...
5.12016-06-05CVE-2016-1684NetworkHighNone Requ...
5.12016-06-05CVE-2016-1683NetworkHighNone Requ...
4.32016-06-05CVE-2016-1682NetworkMediumNone Requ...
6.82016-06-05CVE-2016-1681NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
26% (257)CWE-399Resource Management Errors
22% (225)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
14% (145)CWE-20Improper Input Validation
11% (115)CWE-264Permissions, Privileges, and Access Controls
6% (60)CWE-189Numeric Errors
Hide | Show 15 More...
%idName
3% (39)CWE-200Information Exposure
2% (23)CWE-362Race Condition
2% (21)CWE-254Security Features
2% (21)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
1% (19)CWE-284Access Control (Authorization) Issues
1% (18)CWE-17Code
0% (9)CWE-94Failure to Control Generation of Code ('Code Injection')
0% (7)CWE-310Cryptographic Issues
0% (7)CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path ...
0% (5)CWE-287Improper Authentication
0% (4)CWE-19Data Handling
0% (2)CWE-352Cross-Site Request Forgery (CSRF)
0% (1)CWE-361Time and State
0% (1)CWE-255Credentials Management
0% (1)CWE-16Configuration

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:12672Google Chrome before 15.0.874.102 does not prevent use of an unspecified spec...
oval:org.mitre.oval:def:14591Google Chrome before 17.0.963.46 does not properly implement the drag-and-dro...
oval:org.mitre.oval:def:14134Use-after-free vulnerability in Google Chrome before 13.0.782.215 allows remo...
oval:org.mitre.oval:def:11987Google Chrome Notifications Presenter Use-after-free DoS
oval:org.mitre.oval:def:14761libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers...
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:20863Use-after-free vulnerability in the editing implementation in Blink, as used ...
oval:org.mitre.oval:def:13922DEPRECATED: Google Chrome before 10.0.648.127 on Linux does not properly miti...
oval:org.mitre.oval:def:14367Use-after-free vulnerability in the HTMLCollection implementation in Google C...
oval:org.mitre.oval:def:14481Google Chrome before 12.0.742.91 does not properly implement the framework fo...
oval:org.mitre.oval:def:14622Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not prop...
oval:org.mitre.oval:def:12113Google Chrome before 5.0.375.55 does not properly follow the Safe Browsing sp...
oval:org.mitre.oval:def:7380Google Chrome SPDY Protocol Implementation Buffer Management Weakness Arbitra...
oval:org.mitre.oval:def:21758RHSA-2011:0471: firefox security update (Critical)
oval:org.mitre.oval:def:20764VMware vSphere security updates for the authentication service and third part...
oval:org.mitre.oval:def:14244The xsltGenerateIdFunction function in functions.c in libxslt 1.1.26 and earl...
oval:org.mitre.oval:def:14127USN-1122-2 -- thunderbird vulnerabilities
oval:org.mitre.oval:def:14084USN-1122-3 -- thunderbird regression
oval:org.mitre.oval:def:13996USN-1112-1 -- firefox, firefox-3.0, firefox-3.5, xulrunner-1.9.2 vulnerabilities
oval:org.mitre.oval:def:13991USN-1122-1 -- thunderbird vulnerabilities
oval:org.mitre.oval:def:13434USN-1121-1 -- firefox vulnerabilities
oval:org.mitre.oval:def:13327USN-1123-1 -- xulrunner-1.9.1 vulnerabilities
oval:org.mitre.oval:def:23702ELSA-2011:0471: firefox security update (Critical)
oval:org.mitre.oval:def:15891Use-after-free vulnerability in Google Chrome before 23.0.1271.64 via vectors...
oval:org.mitre.oval:def:13948Skia, as used in Google Chrome before 16.0.912.77, does not perform all requi...
oval:org.mitre.oval:def:14904Use-after-free vulnerability in Google Chrome before 17.0.963.65 via vectors ...

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
78547Google Chrome Tree Builder Remote Overflow
78546Google Chrome Skia Unitialized Value Unspecified Remote DoS
78545Google Chrome Use-after-free DOM Handling Unspecified Remote DoS
78544Google Chrome Use-after-free DOM Selections Unspecified Remote DoS
78543Google Chrome Use-after-free Safe Browsing Navigation Memory Corruption
Hide | Show 20 More...
idDescription
78150Google Chrome Glyph Handling Remote Overflow
78149Google Chrome Use-after-free Animation Frame Handling Remote Code Execution
78148Google Chrome libxml2 parser.c xmlStringLenDecodeEntities() Function Remote O...
77720Google Chrome bidi Handling Use-after-free Remote Code Execution
77719Google Chrome Filewatcher Unspecified Remote Overflow
77718Google Chrome PDF Cross References Out-of-bounds Read Remote DoS
77717Google Chrome PDF Font Handling Remote Overflow
77716Google Chrome v8 i18n Handling Out-of-bounds Write Remote Code Execution
77715Google Chrome Range Handling Use-after-free Remote Code Execution
77714Google Chrome SVG Filters Use-after-free Remote Code Execution
77713Google Chrome PDF Handling Out-of-bounds Read Remote DoS
77712Google Chrome YUV Video Frames Out-of-bounds Read Remote DoS
77711Google Chrome CSS Property Array Unspecified Remote Memory Corruption
77710Google Chrome SVG Parsing Out-of-bounds Read Remote DoS
77709Google Chrome view-source URL Bar Spoofing
77708Google Chrome PDF Parser Out-of-bounds Read Remote DoS
77707Google Chrome libxml Out-of-bounds Read Remote DoS
77706Google Chrome regex Matching Out-of-bounds Read Remote DoS
77621Google Chrome WebKit Cache Objects Image Handling Browsing History Disclosure
77618Apple Safari WebKit Cache Objects Image Handling Browsing History Disclosure

ExploitDB Exploits

idDescription
22406Konqueror 4.7.3 Memory Corruption
17929Google Chrome < 14.0.835.163 PDF File Handling Memory Corruption
12657Google Chrome 4.1.249.1059 Cross Origin Bypass in Google URL (GURL)

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2013-09-18Name : Debian Security Advisory DSA 2439-1 (libpng - buffer overflow)
File : nvt/deb_2439_1.nasl
2013-09-18Name : Debian Security Advisory DSA 2471-1 (ffmpeg - several vulnerabilities)
File : nvt/deb_2471_1.nasl
2012-12-31Name : Fedora Update for v8 FEDORA-2012-20103
File : nvt/gb_fedora_2012_20103_v8_fc17.nasl
2012-12-26Name : Fedora Update for qt FEDORA-2012-19715
File : nvt/gb_fedora_2012_19715_qt_fc16.nasl
2012-12-14Name : SuSE Update for Chromium openSUSE-SU-2012:1637-1 (Chromium)
File : nvt/gb_suse_2012_1637_1.nasl
Hide | Show 20 More...
idDescription
2012-12-14Name : Google Chrome Multiple Vulnerabilities-03 Dec2012 (Linux)
File : nvt/gb_google_chrome_mult_vuln03_dec12_lin.nasl
2012-12-14Name : Google Chrome Multiple Vulnerabilities-03 Dec2012 (Mac OS X)
File : nvt/gb_google_chrome_mult_vuln03_dec12_macosx.nasl
2012-12-14Name : Google Chrome Multiple Vulnerabilities-03 Dec2012 (Windows)
File : nvt/gb_google_chrome_mult_vuln03_dec12_win.nasl
2012-12-13Name : SuSE Update for update openSUSE-SU-2012:0374-1 (update)
File : nvt/gb_suse_2012_0374_1.nasl
2012-12-13Name : SuSE Update for update openSUSE-SU-2012:0466-1 (update)
File : nvt/gb_suse_2012_0466_1.nasl
2012-12-13Name : SuSE Update for update openSUSE-SU-2012:0656-1 (update)
File : nvt/gb_suse_2012_0656_1.nasl
2012-12-13Name : SuSE Update for MozillaFirefox, openSUSE-SU-2012:0760-1 (MozillaFirefox,)
File : nvt/gb_suse_2012_0760_1.nasl
2012-12-13Name : SuSE Update for update openSUSE-SU-2012:0993-1 (update)
File : nvt/gb_suse_2012_0993_1.nasl
2012-12-13Name : SuSE Update for chromium openSUSE-SU-2012:1215-1 (chromium)
File : nvt/gb_suse_2012_1215_1.nasl
2012-12-13Name : SuSE Update for update openSUSE-SU-2012:1376-1 (update)
File : nvt/gb_suse_2012_1376_1.nasl
2012-12-06Name : Ubuntu Update for libxml2 USN-1656-1
File : nvt/gb_ubuntu_USN_1656_1.nasl
2012-12-04Name : RedHat Update for libxml2 RHSA-2012:1512-01
File : nvt/gb_RHSA-2012_1512-01_libxml2.nasl
2012-12-04Name : Mandriva Update for libxml2 MDVSA-2012:176 (libxml2)
File : nvt/gb_mandriva_MDVSA_2012_176.nasl
2012-12-04Name : Debian Security Advisory DSA 2580-1 (libxml2)
File : nvt/deb_2580_1.nasl
2012-12-04Name : FreeBSD Ports: chromium
File : nvt/freebsd_chromium23.nasl
2012-12-04Name : FreeBSD Ports: chromium
File : nvt/freebsd_chromium24.nasl
2012-12-04Name : CentOS Update for libxml2 CESA-2012:1512 centos5
File : nvt/gb_CESA-2012_1512_libxml2_centos5.nasl
2012-12-04Name : CentOS Update for libxml2 CESA-2012:1512 centos6
File : nvt/gb_CESA-2012_1512_libxml2_centos6.nasl
2012-12-04Name : Google Chrome Multiple Vulnerabilities-01 Dec2012 (Linux)
File : nvt/gb_google_chrome_mult_vuln01_dec12_lin.nasl
2012-12-04Name : Google Chrome Multiple Vulnerabilities-01 Dec2012 (Mac OS X)
File : nvt/gb_google_chrome_mult_vuln01_dec12_macosx.nasl

Information Assurance Vulnerability Management (IAVM)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2015-B-0107Multiple Security Vulnerabilities in Google Chrome
Severity : Category I - VMSKEY : V0061361
2015-A-0154Multiple Vulnerabilities in Oracle Fusion Middleware
Severity : Category I - VMSKEY : V0061081
2014-B-0161Multiple Vulnerabilities in VMware ESXi 5.1
Severity : Category I - VMSKEY : V0057717
2014-B-0071Multiple Vulnerabilities in Google Chrome
Severity : Category I - VMSKEY : V0052483
2014-B-0060Multiple Vulnerabilities in Google Chrome
Severity : Category I - VMSKEY : V0050897
Hide | Show 20 More...
idDescription
2014-B-0056Multiple Vulnerabilities in Google Chrome
Severity : Category I - VMSKEY : V0050433
2014-B-0048Multiple Security Vulnerabilities in Apple iOS
Severity : Category I - VMSKEY : V0050015
2014-B-0049Multiple Vulnerabilities in Google Chrome
Severity : Category I - VMSKEY : V0050017
2014-B-0039Multiple Vulnerabilities in Google Chrome
Severity : Category I - VMSKEY : V0048683
2014-B-0031Multiple Security Vulnerabilities in Google Chrome
Severity : Category I - VMSKEY : V0046767
2014-B-0024Multiple Security Vulnerabilities in Apple iOS
Severity : Category I - VMSKEY : V0046157
2014-B-0026Multiple Security Vulnerabilities in Google Chrome
Severity : Category I - VMSKEY : V0046159
2014-B-0023Multiple Vulnerabilities in Google Chrome
Severity : Category I - VMSKEY : V0045283
2014-B-0020Multiple Security Vulnerabilities in Google Chrome
Severity : Category I - VMSKEY : V0044539
2014-A-0030Apple Mac OS X Security Update 2014-001
Severity : Category I - VMSKEY : V0044547
2014-B-0007Multiple Security Vulnerabilities in Google Chrome
Severity : Category I - VMSKEY : V0043878
2014-A-0012Multiple Vulnerabilities in Oracle & Sun Systems Product Suite
Severity : Category I - VMSKEY : V0043396
2014-B-0003Multiple Security Vulnerabilities in Google Chrome
Severity : Category I - VMSKEY : V0043401
2013-A-0233Multiple Vulnerabilities in Mozilla Products
Severity : Category I - VMSKEY : V0042596
2013-B-0137Multiple Security Vulnerabilities in Google Chrome
Severity : Category I - VMSKEY : V0042597
2013-B-0132Google Chrome Memory Corruption Vulnerability
Severity : Category I - VMSKEY : V0042381
2013-B-0124Multiple Vulnerabilities in Google Chrome
Severity : Category I - VMSKEY : V0042301
2013-B-0119Multiple Vulnerabilities in Google Chrome
Severity : Category I - VMSKEY : V0041067
2013-B-0112Multiple Vulnerabilities in Google Chrome
Severity : Category I - VMSKEY : V0040762
2013-A-0031Multiple Security Vulnerabilities in VMware ESX 4.1 and ESXi 4.1
Severity : Category I - VMSKEY : V0036787

Snort® IPS/IDS

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2016-06-09TRUFFLEHUNTER TALOS-CAN-0174 attack attempt
RuleID : 39162 - Type : FILE-PDF - Revision : 2
2016-06-09TRUFFLEHUNTER TALOS-CAN-0174 attack attempt
RuleID : 39161 - Type : FILE-PDF - Revision : 2
2016-03-14Google Chrome PDF Viewer information disclosure attempt
RuleID : 37327 - Type : BROWSER-CHROME - Revision : 1
2016-03-14Google Chrome PDF Viewer information disclosure attempt
RuleID : 37326 - Type : BROWSER-CHROME - Revision : 1
2016-03-14Google Chrome same origin policy bypass attempt
RuleID : 37325 - Type : BROWSER-CHROME - Revision : 1
Hide | Show 20 More...
DateDescription
2016-03-14Google Chrome MOTW pageSerializer HTML injection attempt
RuleID : 37311 - Type : BROWSER-CHROME - Revision : 1
2016-03-14Google Chrome MOTW pageSerializer HTML injection attempt
RuleID : 37310 - Type : BROWSER-CHROME - Revision : 1
2015-04-30Nuclear exploit kit obfuscated file download
RuleID : 33983 - Type : EXPLOIT-KIT - Revision : 3
2015-04-30Nuclear exploit kit landing page detected
RuleID : 33982 - Type : EXPLOIT-KIT - Revision : 3
2015-04-02Network Security Services NSS library RSA signature forgery attempt
RuleID : 33664 - Type : BROWSER-OTHER - Revision : 1
2015-04-02Google Chrome NotifyInstanceWasDeleted object use after free attempt
RuleID : 33662 - Type : BROWSER-CHROME - Revision : 1
2015-04-02Google Chrome NotifyInstanceWasDeleted embed use after free attempt
RuleID : 33661 - Type : BROWSER-CHROME - Revision : 1
2015-03-10libxml2 entity reference name heap buffer overflow attempt
RuleID : 33310 - Type : FILE-OTHER - Revision : 1
2015-03-10libxml2 entity reference name heap buffer overflow attempt
RuleID : 33309 - Type : FILE-OTHER - Revision : 1
2014-11-25Google Chrome Blink locationAttributeSetter use after free attempt
RuleID : 32320 - Type : BROWSER-CHROME - Revision : 3
2014-11-25Google Chrome Blink locationAttributeSetter use after free attempt
RuleID : 32319 - Type : BROWSER-CHROME - Revision : 3
2014-11-16Google Chrome NotifyInstanceWasDeleted embed use after free attempt
RuleID : 31599 - Type : BROWSER-CHROME - Revision : 2
2014-11-16Google Chrome NotifyInstanceWasDeleted object use after free attempt
RuleID : 31598 - Type : BROWSER-CHROME - Revision : 2
2014-11-16Google Chrome NotifyInstanceWasDeleted embed use after free attempt
RuleID : 31597 - Type : BROWSER-CHROME - Revision : 2
2014-11-16Google Chrome NotifyInstanceWasDeleted embed use after free attempt
RuleID : 31596 - Type : BROWSER-CHROME - Revision : 2
2014-11-16Google Chrome NotifyInstanceWasDeleted object use after free attempt
RuleID : 31595 - Type : BROWSER-CHROME - Revision : 2
2014-11-16Google Chrome NotifyInstanceWasDeleted object use after free attempt
RuleID : 31594 - Type : BROWSER-CHROME - Revision : 2
2014-03-15Google Chrome and Apple Safari CSS float use-after-free attempt
RuleID : 29812 - Type : BROWSER-WEBKIT - Revision : 2
2014-03-15Google Chrome and Apple Safari CSS float use-after-free attempt
RuleID : 29811 - Type : BROWSER-WEBKIT - Revision : 2
2014-03-15Google Chrome and Apple Safari CSS float use-after-free attempt
RuleID : 29810 - Type : BROWSER-WEBKIT - Revision : 2

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2016-07-21Name : The remote Apple TV device is affected by multiple vulnerabilities.
File : appletv_9_2_2.nasl - Type : ACT_GATHER_INFO
2016-07-21Name : The remote host is missing a Mac OS X security update that fixes multiple vul...
File : macosx_10_11_6.nasl - Type : ACT_GATHER_INFO
2016-07-21Name : The remote host is missing a Mac OS X security update that fixes multiple vul...
File : macosx_SecUpd2016-004.nasl - Type : ACT_GATHER_INFO
2016-07-21Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-884.nasl - Type : ACT_GATHER_INFO
2016-07-19Name : The remote host contains an application that is affected by multiple vulnerab...
File : itunes_12_4_2.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2016-07-19Name : The remote host is running an application that is affected by multiple vulner...
File : itunes_12_4_2_banner.nasl - Type : ACT_GATHER_INFO
2016-07-18Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201607-07.nasl - Type : ACT_GATHER_INFO
2016-07-01Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_ff76f0e03f1111e6b3c814dae9d210b8.nasl - Type : ACT_GATHER_INFO
2016-07-01Name : The remote Ubuntu host is missing a security-related patch.
File : ubuntu_USN-3015-1.nasl - Type : ACT_GATHER_INFO
2016-06-27Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-756.nasl - Type : ACT_GATHER_INFO
2016-06-23Name : The remote device is affected by multiple vulnerabilities.
File : juniper_space_jsa10698.nasl - Type : ACT_GATHER_INFO
2016-06-22Name : The remote OracleVM host is missing a security update.
File : oraclevm_OVMSA-2016-0066.nasl - Type : ACT_GATHER_INFO
2016-06-21Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2016-1262.nasl - Type : ACT_GATHER_INFO
2016-06-21Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-3013-1.nasl - Type : ACT_GATHER_INFO
2016-06-21Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_1a2aa04f371811e6b3c814dae9d210b8.nasl - Type : ACT_GATHER_INFO
2016-06-20Name : The remote Debian host is missing a security-related update.
File : debian_DSA-3605.nasl - Type : ACT_GATHER_INFO
2016-06-20Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_d59ebed434be11e6be253065ec8fd3ec.nasl - Type : ACT_GATHER_INFO
2016-06-20Name : A web browser installed on the remote Windows host is affected by multiple vu...
File : google_chrome_51_0_2704_103.nasl - Type : ACT_GATHER_INFO
2016-06-20Name : A web browser installed on the remote Mac OS X host is affected by multiple v...
File : macosx_google_chrome_51_0_2704_103.nasl - Type : ACT_GATHER_INFO
2016-06-20Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-741.nasl - Type : ACT_GATHER_INFO
2016-06-20Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-744.nasl - Type : ACT_GATHER_INFO
2016-06-17Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2016-1508-1.nasl - Type : ACT_GATHER_INFO
2016-06-14Name : The remote Debian host is missing a security update.
File : debian_DLA-514.nasl - Type : ACT_GATHER_INFO
2016-06-10Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2016-1512-1.nasl - Type : ACT_GATHER_INFO
2016-06-09Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-695.nasl - Type : ACT_GATHER_INFO