Lucene search
K

27 matches found

CNVD
CNVD
added 2020/01/07 12:0 a.m.3 views

Google Chrome Resource Management Error Vulnerability (CNVD-2020-00997)

Google Chrome is a web browser from Google, an American company. A resource management error vulnerability exists in the Content Delivery Manager in Google Chrome versions prior to 78.0.3904.70, which can be exploited by remote attackers to cause heap damage with the help of specially crafted HTM...

6.5CVSS8.5AI score0.00716EPSS
Exploits0References1
OSV
OSV
added 2019/11/25 3:15 p.m.1 views

DEBIAN-CVE-2019-13705

Insufficient policy enforcement in extensions in Google Chrome prior to 78.0.3904.70 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension...

4.3CVSS6.7AI score0.00584EPSS
Exploits0References1
OSV
OSV
added 2019/11/25 3:15 p.m.1 views

DEBIAN-CVE-2019-13706

Out of bounds memory access in PDFium in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file...

7.8CVSS7.2AI score0.00767EPSS
Exploits0References1
OSV
OSV
added 2019/11/25 3:15 p.m.3 views

UBUNTU-CVE-2019-13702

Inappropriate implementation in installer in Google Chrome on Windows prior to 78.0.3904.70 allowed a local attacker to perform privilege escalation via a crafted executable...

7.8CVSS7.1AI score0.00525EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2019/11/25 3:15 p.m.20 views

CVE-2019-13719

Incorrect security UI in full screen mode in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to hide security UI via a crafted HTML page...

4.3CVSS6.8AI score0.01205EPSS
Exploits0References1
OSV
OSV
added 2019/11/25 3:15 p.m.2 views

UBUNTU-CVE-2019-13703

Insufficient policy enforcement in the Omnibox in Google Chrome on Android prior to 78.0.3904.70 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

4.3CVSS6.7AI score0.0092EPSS
Exploits0References2
Prion
Prion
added 2019/11/25 3:15 p.m.18 views

Design/Logic Flaw

Insufficient policy enforcement in extensions in Google Chrome prior to 78.0.3904.70 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension...

4.3CVSS4.9AI score0.00584EPSS
Exploits0References3Affected Software2
RedHat Linux
RedHat Linux
added 2019/11/06 4:43 p.m.77 views

Important: Red Hat Security Advisory: chromium-browser security update

An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

8.8CVSS6.5AI score0.01205EPSS
Exploits0References21
RedHat Linux
RedHat Linux
added 2019/11/06 4:43 p.m.4 views

chromium-browser: URL bar spoofing

Insufficient policy enforcement in the Omnibox in Google Chrome on Android prior to 78.0.3904.70 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

4.3CVSS7.4AI score0.0092EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/11/06 4:43 p.m.5 views

chromium-browser: File storage disclosure

Insufficient validation of untrusted input in intents in Google Chrome on Android prior to 78.0.3904.70 allowed a local attacker to leak files via a crafted application...

5.5CVSS7.3AI score0.0045EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/11/06 4:43 p.m.6 views

chromium-browser: Cross-origin data leak

Insufficient policy enforcement in JavaScript in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS7.4AI score0.0114EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/11/06 4:43 p.m.5 views

chromium-browser: HTTP authentication spoof

Inappropriate implementation in navigation in Google Chrome on iOS prior to 78.0.3904.70 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

4.3CVSS7.4AI score0.0092EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/11/06 4:43 p.m.5 views

chromium-browser: URL spoof in navigation

Incorrect implementation in navigation in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

4.3CVSS7.4AI score0.0092EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/11/06 4:43 p.m.6 views

chromium-browser: Use-after-free in media

Use after free in media in Google Chrome prior to 78.0.3904.70 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.4AI score0.0108EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/11/06 4:43 p.m.7 views

chromium-browser: Service worker state error

Insufficient policy enforcement in service workers in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page...

4.3CVSS7.4AI score0.00926EPSS
Exploits0References5
CNVD
CNVD
added 2019/10/29 12:0 a.m.6 views

Google Chrome Information Disclosure Vulnerability (CNVD-2019-38245)

Google Chrome is a web browser from Google, an American company. An information disclosure vulnerability exists in versions of Google Chrome prior to 78.0.3904.70. A remote attacker can exploit the vulnerability to gain unauthorized access to sensitive information...

5.3CVSS8.4AI score0.0118EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/29 12:0 a.m.5 views

Google Chrome Forgery Vulnerability (CNVD-2019-38235)

Google Chrome is a web browser from Google, an American company. A security vulnerability exists in Google Chrome versions prior to 78.0.3904.70, which stems from the program's failure to properly handle browser notifications. The vulnerability can be exploited by an attacker to spoof the content...

4.3CVSS8.3AI score0.01205EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/29 12:0 a.m.4 views

Google Chrome Resource Management Error Vulnerability (CNVD-2019-38239)

Google Chrome is a web browser from Google, an American company. A resource management error vulnerability exists in versions of Google Chrome prior to 78.0.3904.70. An attacker can exploit this vulnerability to cause the browser to crash with the help of a specially crafted web page...

4.3CVSS8.5AI score0.00926EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/29 12:0 a.m.3 views

Google Chrome File Download Protection Bypass Vulnerability

Google Chrome is a web browser from Google, an American company. A security vulnerability exists in versions of Google Chrome prior to 78.0.3904.70. A remote attacker can exploit this vulnerability to bypass file download protection and download dangerous files to a user's system...

6.5CVSS8.7AI score0.00987EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/28 12:0 a.m.2 views

Google Chrome Permission License and Access Control Issues Vulnerability (CNVD-2019-38251)

Google Chrome is a web browser from Google, an American company. A vulnerability exists in Installer in versions prior to Google Chrome 78.0.3904.70 with privilege permission and access control issues. A remote attacker can exploit the vulnerability to elevate privileges...

7.8CVSS8.7AI score0.00525EPSS
Exploits0References1
Rows per page
Query Builder