Google Chrome Vulnerabilities
Fix Google Chrome on Windows Server
9 entries · Windows Server · Sorted by severity
Showing 1–9 of 9 results
| Severity | Title | CVSS | |||||
|---|---|---|---|---|---|---|---|
| Active exploitation | CRITICALCISA KEV | Google Chrome < 116.0.5845.188 — RCEWebP Image Processing Heap Buffer Overflow — Actively Exploited Zero-DayGoogle Chrome | CVE-2023-4863 | 8.8 | In the wild | No Reboot | Script |
| Active exploitation | CRITICALCISA KEV | Google Chrome < 120.0.6099.224 — RCEWebRTC Heap Buffer Overflow — Actively Exploited Zero-Day in ChromeGoogle Chrome | CVE-2023-7024 | 8.8 | In the wild | No Reboot | Script |
| Active exploitation | CRITICALCISA KEV | Google Chrome < 120.0.6099.234V8 JavaScript Engine Memory Corruption — Actively Exploited in the WildGoogle Chrome | CVE-2024-0519 | 8.8 | In the wild | No Reboot | Script |
| Active exploitation | CRITICALCISA KEV | Google Chrome Use-After-Free Vulnerability (CVE-2020-16017)Google Chrome | CVE-2020-16017 | 9.6 | In the wild | Reboot Required | Script |
HIGH | Google Chrome < 132.0.6834.83Google Chrome 132 Stable Promotion — V8 OOB, Skia Integer Overflow, Multiple High-Severity Fixes (CVE-2025-0434 / 0435 / 0436 / 0437 / 0438)Google Chrome | CVE-2025-0434+9 more | 8.8 | No public in-the-wild exploitation reported | No Reboot | Script | |
HIGH | Google Chrome < 132.0.6834.110 — RCEGoogle Chrome V8 Engine Object Corruption + OOB Memory Access — Heap RCE (CVE-2025-0611, CVE-2025-0612)Google Chrome | CVE-2025-0611+1 more | 8.8 | No public in-the-wild exploitation reported | No Reboot | Script | |
HIGH | Google Chrome < 131.0.6778.264 — RCEGoogle Chrome V8 JavaScript Engine Type Confusion — Sandboxed RCE (CVE-2025-0291)Google Chrome | CVE-2025-0291 | 8.8 | No public in-the-wild exploitation reported | No Reboot | Script | |
MEDIUMCISA KEV | Google Chrome < 119.0.6045.199Skia Graphics Library Integer Overflow — Exploited in Targeted AttacksGoogle Chrome | CVE-2023-6345 | 6.5 | PoC available | No Reboot | Script | |
MEDIUM | Google Chrome < 132.0.6834.159 — RCEGoogle Chrome DevTools Use-After-Free — Heap Corruption via Crafted Extension (CVE-2025-0762)Google Chrome | CVE-2025-0762 | 6.5 | No public in-the-wild exploitation reported | No Reboot | Script |