27 matches found
Google Chrome Resource Management Error Vulnerability (CNVD-2020-00997)
Google Chrome is a web browser from Google, an American company. A resource management error vulnerability exists in the Content Delivery Manager in Google Chrome versions prior to 78.0.3904.70, which can be exploited by remote attackers to cause heap damage with the help of specially crafted HTM...
DEBIAN-CVE-2019-13705
Insufficient policy enforcement in extensions in Google Chrome prior to 78.0.3904.70 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension...
DEBIAN-CVE-2019-13706
Out of bounds memory access in PDFium in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file...
UBUNTU-CVE-2019-13702
Inappropriate implementation in installer in Google Chrome on Windows prior to 78.0.3904.70 allowed a local attacker to perform privilege escalation via a crafted executable...
CVE-2019-13719
Incorrect security UI in full screen mode in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to hide security UI via a crafted HTML page...
UBUNTU-CVE-2019-13703
Insufficient policy enforcement in the Omnibox in Google Chrome on Android prior to 78.0.3904.70 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...
Design/Logic Flaw
Insufficient policy enforcement in extensions in Google Chrome prior to 78.0.3904.70 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension...
Important: Red Hat Security Advisory: chromium-browser security update
An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...
chromium-browser: URL bar spoofing
Insufficient policy enforcement in the Omnibox in Google Chrome on Android prior to 78.0.3904.70 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...
chromium-browser: File storage disclosure
Insufficient validation of untrusted input in intents in Google Chrome on Android prior to 78.0.3904.70 allowed a local attacker to leak files via a crafted application...
chromium-browser: Cross-origin data leak
Insufficient policy enforcement in JavaScript in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to leak cross-origin data via a crafted HTML page...
chromium-browser: HTTP authentication spoof
Inappropriate implementation in navigation in Google Chrome on iOS prior to 78.0.3904.70 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...
chromium-browser: URL spoof in navigation
Incorrect implementation in navigation in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...
chromium-browser: Use-after-free in media
Use after free in media in Google Chrome prior to 78.0.3904.70 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page...
chromium-browser: Service worker state error
Insufficient policy enforcement in service workers in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page...
Google Chrome Information Disclosure Vulnerability (CNVD-2019-38245)
Google Chrome is a web browser from Google, an American company. An information disclosure vulnerability exists in versions of Google Chrome prior to 78.0.3904.70. A remote attacker can exploit the vulnerability to gain unauthorized access to sensitive information...
Google Chrome Forgery Vulnerability (CNVD-2019-38235)
Google Chrome is a web browser from Google, an American company. A security vulnerability exists in Google Chrome versions prior to 78.0.3904.70, which stems from the program's failure to properly handle browser notifications. The vulnerability can be exploited by an attacker to spoof the content...
Google Chrome Resource Management Error Vulnerability (CNVD-2019-38239)
Google Chrome is a web browser from Google, an American company. A resource management error vulnerability exists in versions of Google Chrome prior to 78.0.3904.70. An attacker can exploit this vulnerability to cause the browser to crash with the help of a specially crafted web page...
Google Chrome File Download Protection Bypass Vulnerability
Google Chrome is a web browser from Google, an American company. A security vulnerability exists in versions of Google Chrome prior to 78.0.3904.70. A remote attacker can exploit this vulnerability to bypass file download protection and download dangerous files to a user's system...
Google Chrome Permission License and Access Control Issues Vulnerability (CNVD-2019-38251)
Google Chrome is a web browser from Google, an American company. A vulnerability exists in Installer in versions prior to Google Chrome 78.0.3904.70 with privilege permission and access control issues. A remote attacker can exploit the vulnerability to elevate privileges...