CVE-2018-5333 In the Web Bluetooth stack in Google Chrome prior to 73.0.3683.75 allowed an attacker to bypass a sandbox protection mechanism via a crafted HTML page.
CVE-2018-5334 In the Web Bluetooth stack in Google Chrome prior to 73.0.3683.75 allowed an attacker to inject HTML content via a crafted HTML page.
CVE-2018-5335 In the Web Bluetooth stack in Google Chrome prior to 73.0.3683.75 allowed an attacker to bypass a sandbox protection mechanism via a crafted HTML page.
CVE-2018-5336 In the PDF viewer in Google Chrome prior to 73.0.3683.75 allowed an attacker to inject arbitrary JavaScript into a PDF via a crafted HTML page.
CVE-2018-5337 In the PDF viewer in Google Chrome prior to 73.0.3683.75 allowed an attacker to inject arbitrary JavaScript into a PDF via a crafted HTML page.
CVE-2018-5338 In the PDF viewer in Google Chrome prior to 73.0.3683.75 allowed an attacker to inject arbitrary JavaScript into a PDF via a crafted HTML page.
CVE-2018-5339 In the PDF viewer in Google Chrome prior to 73.0.3683.75 allowed an attacker to inject arbitrary JavaScript into a PDF via a crafted HTML page.
CVE-2018-5340 In the PDF viewer in Google Chrome prior to
1: 3.6.x, 3.7.x 74.0.3683.75
CVE-2022-0603 In the Web Bluetooth stack in Google Chrome prior to 73.0.3683.75 allowed an attacker to bypass a sandbox protection mechanism via a crafted HTML page.
Product Details
Google Chrome | Web Bluetooth stack, PDF viewer
In the PDF viewer in Google Chrome prior to 73.0.3683.75 allowed an attacker to inject arbitrary JavaScript into a PDF via a crafted HTML page.
Other products impacted
Google Chrome prior to 73.0.3683.75 did not validate the origin of an audio data stream, which allowed an attacker to bypass a sandbox protection mechanism via a crafted HTML page.
CVE-2018-5341 In the PDF viewer in Google Chrome prior to 73.0.3683.75 allowed an attacker to inject arbitrary JavaScript into a PDF via a crafted HTML page.
Timeline
Published on: 04/05/2022 00:15:00 UTC
Last modified on: 04/12/2022 14:15:00 UTC