Qymag1C

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 147.0.7727.55 **Description** A heap corruption issue existed in the V8 component of Google Chrome. A remote attacker could potentially exploit this flaw through a specially crafted HTML page. **Recommendations** Update Google Chrome to version 147.0.7727.55 or later.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 145.0.7632.159 **Description** An improper implementation in the V8 component of Google Chrome could allow a remote attacker to potentially perform out-of-bounds memory access through a crafted HTML page. The issue involves a stack overflow within the parser component. **Recommendations** Update Google Chrome to version 145.0.7632.159 or later.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 145.0.7632.159 **Description** An improper implementation in WebAssembly in Google Chrome prior to version 145.0.7632.159 allows a remote attacker to perform out-of-bounds memory access via a crafted HTML page. The issue resides within the WebAssembly component, specifically related to the `asm.js` and `asm parser` functionalities when handling invalid WebAssembly modules. This can lead to a heap-buffer-overflow in the `ShiftExpression` function. **Recommendations** Update Google Chrome to version 145.0.7632.159 or later.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 146.0.7680.71 **Description** An out-of-bounds read issue exists in the V8 component of Google Chrome. This allows a remote attacker to perform out-of-bounds memory access through a crafted HTML page. The Chromium security severity is rated as Medium. **Recommendations** Update Google Chrome to version 146.0.7680.71 or later.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 146.0.7680.71 **Description** An incorrect security user interface in the PictureInPicture feature allowed a remote attacker to perform UI spoofing through a crafted HTML page. The security severity is rated as Medium by Chromium. **Recommendations** Update Google Chrome to version 146.0.7680.71 or later.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 146.0.7680.153 **Description** An out-of-bounds write issue exists in the V8 JavaScript engine within Google Chrome. This flaw could allow a remote attacker to exploit heap corruption through a specially crafted HTML page. The security severity is rated as High. **Recommendations** Update Google Chrome to version 146.0.7680.153 or later.