本ページは google chrome_os に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2025-6044 | An Improper Access Control vulnerability in the Stylus Tools component of Google ChromeOS version 16238.64.0 on the garaged stylus devices allows a physical attacker to bypass the lock screen and access user files by removing the stylus while the device is closed and using the screen capture feature. | 7f6e188d-c52a-4a19-8674-3c3fa7d1fc7f | 6.1 | 0.11% | 2025-07-07 | 2026-06-17 |
| CVE-2025-6179 | Permissions Bypass in Extension Management in Google ChromeOS 16181.27.0 on managed Chrome devices allows a local attacker to disable extensions and access Developer Mode, including loading additional extensions via exploiting vulnerabilities using the ExtHang3r and ExtPrint3r tools. | 7f6e188d-c52a-4a19-8674-3c3fa7d1fc7f | 9.8 | 0.17% | 2025-06-16 | 2026-06-17 |
| CVE-2025-6177 | Privilege Escalation in MiniOS in Google ChromeOS (16063.45.2 and potentially others) on enrolled devices allows a local attacker to gain root code execution via exploiting a debug shell (VT3 console) accessible through specific key combinations during developer mode entry and MiniOS access, even when developer mode is blocked by device policy or Firmware Write Protect (FWMP). | 7f6e188d-c52a-4a19-8674-3c3fa7d1fc7f | 7.4 | 0.08% | 2025-06-16 | 2026-06-17 |
| CVE-2025-2509 | Out-of-Bounds Read in Virglrenderer in ChromeOS 16093.57.0 allows a malicious guest VM to achieve arbitrary address access within the crosvm sandboxed process, potentially leading to VM escape via crafted vertex elements data triggering an out-of-bounds read in util_format_description. | 7f6e188d-c52a-4a19-8674-3c3fa7d1fc7f | 7.8 | 0.09% | 2025-05-05 | 2026-06-17 |
| CVE-2025-1290 | A race condition Use-After-Free vulnerability exists in the virtio_transport_space_update function within the Kernel 5.4 on ChromeOS. Concurrent allocation and freeing of the virtio_vsock_sock structure during an AF_VSOCK connect syscall can occur before a worker thread accesses it resulting in a dangling pointer and potential kernel code execution. | 7f6e188d-c52a-4a19-8674-3c3fa7d1fc7f | 8.1 | 0.27% | 2025-04-16 | 2026-06-17 |
| CVE-2025-2073 | Out-of-Bounds Read in netfilter/ipset in Linux Kernel ChromeOS [6.1, 5.15, 5.10, 5.4, 4.19] allows a local attacker with low privileges to trigger an out-of-bounds read, potentially leading to information disclosure | 7f6e188d-c52a-4a19-8674-3c3fa7d1fc7f | 8.8 | 0.20% | 2025-04-16 | 2026-06-17 |
| CVE-2025-1704 | ComponentInstaller Modification in ComponentInstaller in Google ChromeOS 15823.23.0 on Chromebooks allows enrolled users with local access to unenroll devices and intercept device management requests via loading components from the unencrypted stateful partition. | 7f6e188d-c52a-4a19-8674-3c3fa7d1fc7f | 6.5 | 0.19% | 2025-04-16 | 2026-06-17 |
| CVE-2025-1568 | Access Control Vulnerability in Gerrit chromiumos project configuration in Google ChromeOS 16063.87.0 allows an attacker with a registered Gerrit account to inject malicious code into ChromeOS projects and potentially achieve Remote Code Execution and Denial of Service via editing trusted pipelines by insufficient access controls and misconfigurations in Gerrit's project.config. | 7f6e188d-c52a-4a19-8674-3c3fa7d1fc7f | 8.8 | 0.35% | 2025-04-16 | 2026-06-17 |
| CVE-2025-1566 | DNS Leak in Native System VPN in Google ChromeOS Dev Channel on ChromeOS 16002.23.0 allows network observers to expose plaintext DNS queries via failure to properly tunnel DNS traffic during VPN state transitions. | 7f6e188d-c52a-4a19-8674-3c3fa7d1fc7f | 7.5 | 0.22% | 2025-04-16 | 2026-06-17 |
| CVE-2025-1121 | Privilege escalation in Installer and Recovery image handling in Google ChromeOS version 15786.48.2 on device allows an attacker with physical access to gain root code execution and potentially unenroll enterprise-managed devices via a specially crafted recovery image. | 7f6e188d-c52a-4a19-8674-3c3fa7d1fc7f | 6.8 | 0.14% | 2025-03-06 | 2026-06-17 |
| CVE-2022-2743 | Integer overflow in Window Manager in Google Chrome on Chrome OS and Lacros prior to 104.0.5112.79 allowed a remote attacker who convinced a user to engage in specific UI interactions to perform an out of bounds memory write via crafted UI interactions. (Chrome security severity: High) | [email protected] | 8.8 | 0.54% | 2023-01-02 | 2026-06-17 |
| CVE-2014-3180 | In kernel/compat.c in the Linux kernel before 3.17, as used in Google Chrome OS and other products, there is a possible out-of-bounds read. restart_syscall uses uninitialized data when restarting compat_sys_nanosleep. NOTE: this is disputed because the code path is unreachable | [email protected] | 9.1 | 0.94% | 2019-11-06 | 2026-06-16 |
| CVE-2019-16508 | The Imagination Technologies driver for Chrome OS before R74-11895.B, R75 before R75-12105.B, and R76 before R76-12208.0.0 allows attackers to trigger an Integer Overflow and gain privileges via a malicious application. This occurs because of intentional access for the GPU process to /dev/dri/card1 and the PowerVR ioctl handler, as demonstrated by PVRSRVBridgeSyncPrimOpCreate. | [email protected] | 7.8 | 0.50% | 2019-10-01 | 2026-06-16 |
| CVE-2016-5179 | Chrome OS before 53.0.2785.144 allows remote attackers to execute arbitrary commands at boot. | [email protected] | 9.8 | 2.38% | 2018-03-06 | 2026-06-16 |
| CVE-2017-15400 | Insufficient restriction of IPP filters in CUPS in Google Chrome OS prior to 62.0.3202.74 allowed a remote attacker to execute a command with the same privileges as the cups daemon via a crafted PPD file, aka a printer zeroconfig CRLF issue. | [email protected] | 7.8 | 0.88% | 2018-02-07 | 2026-06-16 |
| CVE-2017-15397 | Inappropriate implementation in ChromeVox in Google Chrome OS prior to 62.0.3202.74 allowed a remote attacker in a privileged network position to observe or tamper with certain cleartext HTTP requests by leveraging that position. | [email protected] | 7.4 | 0.43% | 2018-02-07 | 2026-06-16 |
| CVE-2017-5084 | Inappropriate implementation in image-burner in Google Chrome OS prior to 59.0.3071.92 allowed a local attacker to read local files via dbus-send commands to a BurnImage D-Bus endpoint. | [email protected] | 3.3 | 0.15% | 2017-10-27 | 2026-06-16 |
| CVE-2016-5169 | Format string vulnerability in Google Chrome OS before 53.0.2785.103 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. | [email protected] | 8.8 | 0.89% | 2016-09-25 | 2026-06-16 |
| CVE-2014-3188 | Google Chrome before 38.0.2125.101 and Chrome OS before 38.0.2125.101 do not properly handle the interaction of IPC and Google V8, which allows remote attackers to execute arbitrary code via vectors involving JSON data, related to improper parsing of an escaped index by ParseJsonObject in json-parser.h. | [email protected] | 10.0 | 5.95% | 2014-10-08 | 2026-06-16 |
| CVE-2014-1711 | The GPU driver in the kernel in Google Chrome OS before 33.0.1750.152 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via unknown vectors. | [email protected] | 7.5 | 0.84% | 2014-03-16 | 2026-06-16 |