Google Security Research

1,215 exploits Active since May 2013
CVE-2019-6225 EXPLOITDB HIGH c WRITEUP
Apple Iphone OS < 12.1.3 - Out-of-Bounds Write
A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2. A malicious application may be able to elevate privileges.
CVSS 7.8
CVE-2019-8514 EXPLOITDB HIGH text WORKING POC
iOS <12.2 - Privilege Escalation
A logic issue was addressed with improved state management. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. An application may be able to gain elevated privileges.
CVSS 7.8
CVE-2019-8646 EXPLOITDB HIGH text WORKING POC
Apple Iphone OS < 12.4 - Out-of-Bounds Read
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3. A remote attacker may be able to leak memory.
CVSS 7.5
CVE-2019-8647 EXPLOITDB CRITICAL text WORKING POC
Apple Iphone OS < 12.4 - Use After Free
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.4, tvOS 12.4, watchOS 5.3. A remote attacker may be able to cause arbitrary code execution.
CVSS 9.8
CVE-2019-8660 EXPLOITDB CRITICAL text WRITEUP
Apple Iphone OS < 12.4 - Out-of-Bounds Write
A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3. A remote attacker may be able to cause unexpected application termination or arbitrary code execution.
CVSS 9.8
CVE-2019-8662 EXPLOITDB CRITICAL text WORKING POC
Apple Iphone OS < 12.4 - Insecure Deserialization
This issue was addressed with improved checks. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3. An attacker may be able to trigger a use-after-free in an application deserializing an untrusted NSDictionary.
CVSS 9.8
EIP-2026-103510 EXPLOITDB text WORKING POC
Graphite2 - TtfUtil::CmapSubtable4NextCodepoint Heap Overread
EIP-2026-103509 EXPLOITDB text WORKING POC
Graphite2 - TtfUtil::CheckCmapSubtable12 Heap Overread
EIP-2026-103508 EXPLOITDB text WORKING POC
Graphite2 - NameTable::getName Multiple Heap Out-of-Bounds Reads
EIP-2026-103507 EXPLOITDB text WORKING POC
Graphite2 - GlyphCache::Loader Heap Overreads
EIP-2026-103506 EXPLOITDB text WORKING POC
Graphite2 - GlyphCache::GlyphCache Heap Buffer Overflow
EIP-2026-103504 EXPLOITDB javascript WORKING POC
Google Chrome V8 JIT - 'LoadElimination::ReduceTransitionElementsKind' Type Confusion
EIP-2026-103501 EXPLOITDB html WORKING POC
Google Chrome V8 - Turbofan JSCallReducer::ReduceArrayIndexOfIncludes Out-of-Bounds Read/Write
EIP-2026-103500 EXPLOITDB javascript WORKING POC
Google Chrome V8 - 'Genesis::InitializeGlobal' Out-of-Bounds Read/Write
CVE-2018-6064 EXPLOITDB HIGH javascript WORKING POC
Google Chrome <65.0.3325.146 - Heap Corruption
Type Confusion in the implementation of __defineGetter__ in V8 in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVSS 8.8
CVE-2019-5789 EXPLOITDB HIGH text WRITEUP
Google Chrome < 73.0.3683.75 - Integer Overflow
An integer overflow that leads to a use-after-free in WebMIDI in Google Chrome on Windows prior to 73.0.3683.75 allowed a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML page.
CVSS 8.8
CVE-2019-5788 EXPLOITDB HIGH text WORKING POC
Google Chrome < 73.0.3683.75 - Integer Overflow
An integer overflow that leads to a use-after-free in Blink Storage in Google Chrome on Linux prior to 73.0.3683.75 allowed a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML page.
CVSS 8.8
CVE-2019-5797 EXPLOITDB HIGH text WRITEUP
Google Chrome < 73.0.3683.75 - Double Free
Double free in DOMStorage in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVSS 7.5
CVE-2019-5796 EXPLOITDB HIGH text WRITEUP
Google Chrome < 73.0.3683.75 - Race Condition
Data race in extensions guest view in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVSS 7.5
EIP-2026-103499 EXPLOITDB text WORKING POC
Google Chrome < M72 - Use-After-Free in RenderProcessHostImpl Binding for P2PSocketDispatcherHost
EIP-2026-103498 EXPLOITDB text WORKING POC
Google Chrome < M72 - RenderFrameHostImpl::CreateMediaStreamDispatcherHost Use-After-Free
EIP-2026-103497 EXPLOITDB text WRITEUP
Google Chrome < M72 - PaymentRequest Service Use-After-Free
EIP-2026-103496 EXPLOITDB text WRITEUP
Google Chrome < M72 - FileWriterImpl Use-After-Free
EIP-2026-103494 EXPLOITDB html WORKING POC
Google Chrome 74.0.3729.0 / 76.0.3789.0 - Heap Use-After-Free in blink::PresentationAvailabilityState::UpdateAvailability
EIP-2026-103493 EXPLOITDB html WORKING POC
Google Chrome 73.0.3683.39 / Chromium 74.0.3712.0 - 'ReadableStream' Internal Object Leak Type Confusion