Lucene search
K

33 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2018-6080

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Lack of access control checks in Instrumentation in Google Chrome prior to 65.0.3325.146 allowed a remote attacker who had compromised the renderer process to...

6.5CVSS7.4AI score0.01373EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2018-6075

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect handling of specified filenames in file downloads in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to leak cross-origin data via a...

6.5CVSS7.4AI score0.01482EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2018-6062

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap overflow write in Skia in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page...

8.8CVSS8.1AI score0.01553EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2018-6073

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap buffer overflow in WebGL in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML...

8.8CVSS8.4AI score0.0179EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:31 a.m.3 views

SUSE CVE-2018-6061

A race in the handling of SharedArrayBuffers in WebAssembly in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

7.5CVSS8.9AI score0.01345EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:31 a.m.4 views

SUSE CVE-2018-6064

Type Confusion in the implementation of defineGetter in V8 in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS9AI score0.06892EPSS
Exploits2References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:31 a.m.2 views

SUSE CVE-2018-6069

Stack buffer overflow in Skia in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...

6.5CVSS9AI score0.01554EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:31 a.m.4 views

SUSE CVE-2018-6068

Object lifecycle issue in Chrome Custom Tab in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

4.3CVSS8.5AI score0.00971EPSS
Exploits0References6
NVD
NVD
added 2018/11/14 3:29 p.m.16 views

CVE-2018-6083

Failure to disallow PWA installation from CSP sandboxed pages in AppManifest in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to access privileged APIs via a crafted HTML page...

8.8CVSS7.9AI score0.0155EPSS
Exploits0References5
OSV
OSV
added 2018/11/14 3:29 p.m.8 views

UBUNTU-CVE-2018-6070

Lack of CSP enforcement on WebUI pages in Bink in Google Chrome prior to 65.0.3325.146 allowed an attacker who convinced a user to install a malicious extension to bypass content security policy via a crafted Chrome Extension...

6.1CVSS6.9AI score0.00853EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2018/11/14 3:29 p.m.33 views

CVE-2018-6066

Lack of CORS checking by ResourceFetcher/ResourceLoader in Blink in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS7AI score0.02671EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2018/11/14 3:29 p.m.28 views

CVE-2018-6064

Type Confusion in the implementation of defineGetter in V8 in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.2AI score0.06892EPSS
Exploits2References2
OSV
OSV
added 2018/11/14 3:29 p.m.1 views

UBUNTU-CVE-2018-6074

Failure to apply Mark-of-the-Web in Downloads in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to bypass OS level controls via a crafted HTML page...

8.8CVSS7.3AI score0.01521EPSS
Exploits0References3
Prion
Prion
added 2018/11/14 3:29 p.m.16 views

Design/Logic Flaw

A race in the handling of SharedArrayBuffers in WebAssembly in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

5.1CVSS7.7AI score0.01345EPSS
Exploits0References5Affected Software5
CNVD
CNVD
added 2018/04/11 12:0 a.m.3 views

Google Chrome V8 Competitive Conditions Vulnerability

Google Chrome is the United States Google Google company developed a Web browser. v8 is one of the open source JavaScript engine. A competitive condition vulnerability exists in V8 in versions prior to Google Chrome 65.0.3325.146. A remote attacker could exploit this vulnerability by tricking a...

7.5CVSS8.9AI score0.01345EPSS
Exploits0References1
CNVD
CNVD
added 2018/04/11 12:0 a.m.3 views

Google Chrome Denial of Service Vulnerability (CNVD-2018-08819)

Google Chrome is a web browser developed by the American company Google Google. A security vulnerability exists in versions prior to Google Chrome 65.0.3325.146. An attacker can exploit this vulnerability to conduct timing attacks, execute code, or cause a denial of service application crash...

6.5CVSS8.5AI score0.01523EPSS
Exploits0References1
CNVD
CNVD
added 2018/04/11 12:0 a.m.4 views

Google Chrome OmniBox URL Forgery Vulnerability (CNVD-2018-08820)

Google Chrome is a web browser developed by Google, Inc. and Omnibox is a real-time search engine. A security vulnerability exists in OmniBox in versions of Google Chrome prior to 65.0.3325.146. A remote attacker can exploit this vulnerability to forge URLs by tricking users into visiting special...

4.3CVSS8.6AI score0.01202EPSS
Exploits0References1
CNVD
CNVD
added 2018/04/11 12:0 a.m.1 views

Google Chrome Flash Memory Misreference Vulnerability

Google Chrome is a web browser developed by Google, a U.S. company. Flash is one of the plug-ins for handling Flash. A memory misreference vulnerability exists in Flash in versions of Google Chrome prior to 65.0.3325.146. A detailed vulnerability description is not available at this time...

6.6AI score
Exploits0References1
CNVD
CNVD
added 2018/04/11 12:0 a.m.2 views

Google Chrome Security Vulnerability (CNVD-2018-09128)

Google Chrome is a web browser developed by the American company Google Google. A security vulnerability exists in Google Chrome prior to version 65.0.3325.146, which stems from the program's failure to properly handle AppManifests.There is currently no detailed description of the vulnerability...

8.8CVSS8.5AI score0.0155EPSS
Exploits0References1
CNVD
CNVD
added 2018/04/11 12:0 a.m.3 views

Google Chrome Information Disclosure Vulnerability (CNVD-2018-08952)

Google Chrome is a web browser developed by the American company Google Google. A security vulnerability exists in Google Chrome versions prior to 65.0.3325.146. A remote attacker can exploit this vulnerability to obtain sensitive information by tricking users into visiting a specially crafted...

6.5CVSS8.3AI score0.01482EPSS
Exploits0References1
Rows per page
Query Builder