Vulnerability Database

310,057

Total vulnerabilities in the database

CVE-2010-4041

The sandbox implementation in Google Chrome before 7.0.517.41 on Linux does not properly constrain worker processes, which might allow remote attackers to bypass intended access restrictions via unspecified vectors.

Published: Oct 21, 2010
Updated: Nov 9, 2025
CVE: CVE-2010-4041
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
google / chrome	-	7.0.517.41

http://code.google.com/p/chromium/issues/detail?id=54794
http://googlechromereleases.blogspot.com/2010/10/stable-channel-update.html
http://secunia.com/advisories/41888
http://www.securityfocus.com/bid/44241
http://www.vupen.com/english/advisories/2010/2731
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14201

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo