CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5836 matches found

Prion•added 2019/11/25 3:15 p.m.•14 views

Input validation

Insufficient data validation in JavaScript in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

4.3CVSS7AI score0.0093EPSS

Exploits0References2Affected Software1

Prion•added 2019/11/25 3:15 p.m.•11 views

Input validation

Insufficient data validation in extensions in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to disable extensions via a crafted HTML page...

4.3CVSS5AI score0.00654EPSS

Exploits0References2Affected Software1

Prion•added 2019/11/25 3:15 p.m.•16 views

Design/Logic Flaw

Incorrect data validation in downloads in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to perform domain spoofing via a crafted HTML page...

4.3CVSS6.6AI score0.00729EPSS

Exploits0References2Affected Software1

Prion•added 2019/11/25 3:15 p.m.•18 views

Input validation

Insufficient data validation in downloads in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to bypass download restrictions via a crafted HTML page...

4.3CVSS5AI score0.00634EPSS

Exploits0References2Affected Software1

Prion•added 2019/11/25 3:15 p.m.•20 views

Design/Logic Flaw

Insufficient data validation in AppCache in Google Chrome prior to 76.0.3809.87 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page...

4.3CVSS6.5AI score0.00741EPSS

Exploits0References2Affected Software1

Prion•added 2019/11/25 3:15 p.m.•17 views

Input validation

Insufficient data validation in CORS in Google Chrome prior to 76.0.3809.87 allowed an attacker who convinced a user to install a malicious extension to bypass content security policy via a crafted Chrome Extension...

4.3CVSS5.3AI score0.00464EPSS

Exploits0References2Affected Software1

Prion•added 2019/11/25 3:15 p.m.•10 views

Input validation

Insufficient data validation in downloads in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

4.3CVSS4.8AI score0.00621EPSS

Exploits0References2Affected Software1

UbuntuCve•added 2019/11/25 3:15 p.m.•16 views

CVE-2019-5875

Insufficient data validation in downloads in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

4.3CVSS6.8AI score0.00621EPSS

Exploits0References1

OSV•added 2019/11/25 3:15 p.m.•0 views

UBUNTU-CVE-2019-13673

Insufficient data validation in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

7.4CVSS7.2AI score0.00737EPSS

Exploits0References2

CVE•added 2019/11/25 2:22 p.m.•229 views

CVE-2019-5875

CVE-2019-5875 is a URL-spoofing vulnerability in Chromium-based browsers (Google Chrome/Chromium) where insufficient data validation in downloads allowed a crafted HTML page to spoof the Omnibox (URL bar). Connected advisories confirm the vulnerability and document remediation: Debian’s security ...

4.3CVSS4.8AI score0.00621EPSS

Exploits0References2Affected Software1

Cvelist•added 2019/11/25 2:22 p.m.•17 views

CVE-2019-5875

Insufficient data validation in downloads in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

5AI score0.00621EPSS

Exploits0References2

Debian CVE•added 2019/11/25 2:22 p.m.•15 views

CVE-2019-5875

Insufficient data validation in downloads in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

4.3CVSS5.7AI score0.00621EPSS

Exploits0

Cvelist•added 2019/11/25 2:22 p.m.•19 views

CVE-2019-5864

5.5AI score0.00464EPSS

Exploits0References2

Cvelist•added 2019/11/25 2:22 p.m.•28 views

CVE-2019-5862

Insufficient data validation in AppCache in Google Chrome prior to 76.0.3809.87 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page...

6.6AI score0.00741EPSS

Exploits0References2

CVE•added 2019/11/25 2:22 p.m.•235 views

CVE-2019-5861

CVE-2019-5861 affects Chromium/Blink prior to 76.0.3809.87, where an error in determining the click location could allow bypassing anti-clickjacking (content spoofing). Affected component: Blink/WebKit click-location logic in Chromium before the fixed version. Impact per advisories: potential con...

4.3CVSS5AI score0.0064EPSS

Exploits0References2Affected Software1

CVE•added 2019/11/25 2:22 p.m.•271 views

CVE-2019-5864

CVE-2019-5864 concerns Google Chrome/Chromium where insufficient port filtering in CORS for extensions allowed bypassing Content Security Policy. Affected: Chrome/Chromium versions prior to 76.0.3809.87. Impact noted across multiple advisories (Arch Linux ASA-201908-1, Debian DSA-4500-1, Debian D...

4.3CVSS5.3AI score0.00464EPSS

Exploits0References2Affected Software1

Cvelist•added 2019/11/25 2:22 p.m.•18 views

CVE-2019-5861

Insufficient data validation in Blink in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to bypass anti-clickjacking policy via a crafted HTML page...

5.2AI score0.0064EPSS

Exploits0References2

CVE•added 2019/11/25 2:22 p.m.•261 views

CVE-2019-5862

Chromium/Google Chrome: CVE-2019-5862 is an AppCache validation flaw in Chromium before 76.0.3809.87 (renderer-compromised bypass). The issue allows a remote attacker to bypass site isolation via a crafted HTML page. Affected component: AppCache in Chromium; root cause: insufficient data validati...

6.5CVSS6.5AI score0.00741EPSS

Exploits0References2Affected Software1

Debian CVE•added 2019/11/25 2:22 p.m.•19 views

CVE-2019-5861

Insufficient data validation in Blink in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to bypass anti-clickjacking policy via a crafted HTML page...

4.3CVSS5.9AI score0.0064EPSS

Exploits0

Debian CVE•added 2019/11/25 2:22 p.m.•27 views

CVE-2019-5864

4.3CVSS6.2AI score0.00464EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by