Lucene search
K

23 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:2 a.m.3 views

SUSE CVE-2020-6506

Insufficient policy enforcement in WebView in Google Chrome on Android prior to 83.0.4103.106 allowed a remote attacker to bypass site isolation via a crafted HTML page...

6.5CVSS6.8AI score0.03819EPSS
Exploits0References6
OSV
OSV
added 2020/10/02 4:22 p.m.142 views

GHSA-36J3-XXF7-4PQG Android WebView Universal Cross-site Scripting

A universal cross-site scripting UXSS vulnerability, CVE-2020-6506 https://crbug.com/1083819, has been identified in the Android WebView system component, which allows cross-origin iframes to execute arbitrary JavaScript in the top-level document. This vulnerability affects React Native apps whic...

6.5CVSS7.3AI score0.03819EPSS
Exploits0References19
Github Security Blog
Github Security Blog
added 2020/10/02 4:22 p.m.216 views

Android WebView Universal Cross-site Scripting

A universal cross-site scripting UXSS vulnerability, CVE-2020-6506 https://crbug.com/1083819, has been identified in the Android WebView system component, which allows cross-origin iframes to execute arbitrary JavaScript in the top-level document. This vulnerability affects React Native apps whic...

6.5CVSS1.6AI score0.03819EPSS
Exploits0References19Affected Software1
Node.js
Node.js
added 2020/09/25 5:5 p.m.82 views

Universal XSS in Android WebView

Overview A universal cross-site scripting UXSS vulnerability, CVE-2020-6506 https://crbug.com/1083819, has been identified in the Android WebView system component, which allows cross-origin iframes to execute arbitrary JavaScript in the top-level document. This vulnerability affects React Native...

4.3CVSS2.3AI score0.03819EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/07/27 12:0 a.m.36 views

GLSA-202007-08 : Chromium, Google Chrome: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202007-08 Chromium, Google Chrome: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Chromium and Google Chrome. Please review the CVE identifiers referenced below for details. Impact : Please review the...

9.6CVSS7.8AI score0.19419EPSS
Exploits19References31
OSV
OSV
added 2020/07/22 5:15 p.m.6 views

CVE-2020-6506

Insufficient policy enforcement in WebView in Google Chrome on Android prior to 83.0.4103.106 allowed a remote attacker to bypass site isolation via a crafted HTML page...

6.5CVSS6.7AI score
Exploits0References11
Cvelist
Cvelist
added 2020/07/22 4:15 p.m.23 views

CVE-2020-6506

Insufficient policy enforcement in WebView in Google Chrome on Android prior to 83.0.4103.106 allowed a remote attacker to bypass site isolation via a crafted HTML page...

6.6AI score0.03819EPSS
Exploits0References11
CVE
CVE
added 2020/07/22 4:15 p.m.215 views

CVE-2020-6506

CVE-2020-6506 affects Android WebView used by Google Chrome on Android, due to insufficient policy enforcement in WebView that allows bypassing site isolation via a crafted HTML page. The issue is categorized as a policy enforcement error in WebView, impacting the ability to enforce cross-origin/...

6.5CVSS6.4AI score0.03819EPSS
Exploits0References11Affected Software1
AlpineLinux
AlpineLinux
added 2020/07/22 4:15 p.m.50 views

CVE-2020-6506

Insufficient policy enforcement in WebView in Google Chrome on Android prior to 83.0.4103.106 allowed a remote attacker to bypass site isolation via a crafted HTML page...

6.5CVSS6.8AI score0.03819EPSS
Exploits0
Debian CVE
Debian CVE
added 2020/07/22 4:15 p.m.29 views

CVE-2020-6506

Insufficient policy enforcement in WebView in Google Chrome on Android prior to 83.0.4103.106 allowed a remote attacker to bypass site isolation via a crafted HTML page...

6.5CVSS7.2AI score0.03819EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/07/20 12:0 a.m.33 views

openSUSE Security Update : chromium (openSUSE-2020-845)

This update for chromium fixes the following issues : Update to version 83.0.4103.106 boo1173029 : - CVE-2020-6505: Use after free in speech - CVE-2020-6506: Insufficient policy enforcement in WebView - CVE-2020-6507: Out of bounds write in V8 - Enforce to not use system borders bsc1173063 C...

9.6CVSS7.5AI score0.19419EPSS
Exploits6References5
Tenable Nessus
Tenable Nessus
added 2020/07/20 12:0 a.m.50 views

openSUSE Security Update : chromium (openSUSE-2020-893)

This update for chromium fixes the following issues : Chromium was updated to 83.0.4103.116 boo1173251 : - CVE-2020-6509: Use after free in extensions Chromium was updated to 83.0.4103.106 boo1173029 : - CVE-2020-6505: Use after free in speech - CVE-2020-6506: Insufficient policy enforcement in...

9.6CVSS7.5AI score0.19419EPSS
Exploits6References12
OpenVAS
OpenVAS
added 2020/07/03 12:0 a.m.25 views

Fedora: Security Advisory for chromium (FEDORA-2020-08561721ad)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.6CVSS7.6AI score0.19419EPSS
Exploits19References2
OpenVAS
OpenVAS
added 2020/06/29 12:0 a.m.24 views

openSUSE: Security Advisory for chromium (openSUSE-SU-2020:0893-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.6CVSS8.3AI score0.19419EPSS
Exploits6References2
OSV
OSV
added 2020/06/28 12:16 p.m.11 views

OPENSUSE-SU-2020:0893-1 Security update for chromium

This update for chromium fixes the following issues: Chromium was updated to 83.0.4103.116 boo1173251: CVE-2020-6509: Use after free in extensions Chromium was updated to 83.0.4103.106 boo1173029: CVE-2020-6505: Use after free in speech CVE-2020-6506: Insufficient policy enforcement in WebView...

9.6CVSS8.3AI score0.19419EPSS
Exploits6References13
Hacker One
Hacker One
added 2020/06/23 10:2 p.m.35 views

X (Formerly Twitter): Android WebViews in Twitter app are vulnerable to UXSS due to configuration and CVE-2020-6506

Summary: CVSS score: 8.1 / High / CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N Embargo notice: Do Not Disclose publicly until https://crbug.com/1083819 is disclosed. Twitter for Android is affected by a UXSS vulnerability due to its configuration of Android WebView and CVE-2020-6506. Vendor...

4.3CVSS8.4AI score0.03819EPSS
Exploits0
OpenVAS
OpenVAS
added 2020/06/23 12:0 a.m.30 views

openSUSE: Security Advisory for chromium (openSUSE-SU-2020:0845-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.6CVSS8.1AI score0.19419EPSS
Exploits6References2
RedHat Linux
RedHat Linux
added 2020/06/22 7:43 a.m.61 views

Important: Red Hat Security Advisory: chromium-browser security update

An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

9.6CVSS6.9AI score0.19419EPSS
Exploits6References4
Tenable Nessus
Tenable Nessus
added 2020/06/22 12:0 a.m.35 views

RHEL 6 : chromium-browser (RHSA-2020:2643)

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:2643 advisory. Chromium is an open-source web browser, powered by WebKit Blink. This update upgrades Chromium to version 83.0.4103.106. Security Fixes:...

9.6CVSS7.8AI score0.19419EPSS
Exploits6References8
Tenable Nessus
Tenable Nessus
added 2020/06/18 12:0 a.m.38 views

Google Chrome < 83.0.4103.106 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 83.0.4103.106. It is, therefore, affected by multiple vulnerabilities as referenced in the 202006stable-channel-update-for-desktop15 advisory. - Out of bounds write in V8 in Google Chrome prior to 83.0.4103.106 allowed a...

9.6CVSS7.7AI score0.19419EPSS
Exploits6References8
Rows per page
Query Builder