20 matches found
Astra Linux – Vulnerability in Chromium
In Google Chrome, policy bypass in downloads before version 147.0.7727.55 allowed a remote attacker to bypass multi-download protections through a crafted HTML page. Chromium security severity: Low...
CVE-2026-5900
Policy bypass in Downloads in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to bypass of multi-download protections via a crafted HTML page. Chromium security severity: Low...
RHEL 6 : openstack-glance (RHSA-2013:1525)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2013:1525 advisory. The openstack-glance packages provide a service code name Glance that acts as a registry for virtual machine images. A flaw was found in the Glance...
SUSE CVE-2024-1675
Insufficient policy enforcement in Download in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. Chromium security severity: Medium...
DEBIAN-CVE-2024-1675
Insufficient policy enforcement in Download in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. Chromium security severity: Medium...
PT-2024-1837 · Google +5 · Google Chrome +5
Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 122.0.6261.57 Microsoft Edge affected versions not specified Description: The issue is related to insufficient policy enforcement in the Download component, allowing a remote attacker to bypass existing securit...
SUSE CVE-2019-13709
Insufficient policy enforcement in downloads in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to bypass download restrictions via a crafted HTML page...
SUSE CVE-2020-6487
Insufficient policy enforcement in downloads in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page...
SUSE CVE-2020-6488
Insufficient policy enforcement in downloads in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page...
UBUNTU-CVE-2022-3047
Insufficient policy enforcement in Extensions API in Google Chrome prior to 105.0.5195.52 allowed an attacker who convinced a user to install a malicious extension to bypass downloads policy via a crafted HTML page...
DEBIAN-CVE-2021-21133
Insufficient policy enforcement in Downloads in Google Chrome prior to 88.0.4324.96 allowed an attacker who convinced a user to download files to bypass navigation restrictions via a crafted HTML page...
Google Chrome Download Policy Enforcement Deficiency Vulnerability (CNVD-2021-17310)
Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. A download policy enforcement deficiency vulnerability exists in versions of Google Chrome prior to 88.0.4324.96. An attacker can exploit this vulnerability to bypa...
Google Chrome 安全漏洞
Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. A download policy enforcement deficiency vulnerability exists in versions of Google Chrome prior to 88.0.4324.96. An attacker can exploit this vulnerability to bypa...
UBUNTU-CVE-2020-15988
Insufficient policy enforcement in downloads in Google Chrome on Windows prior to 86.0.4240.75 allowed a remote attacker who convinced the user to open files to execute arbitrary code via a crafted HTML page...
chromium-browser: Insufficient policy enforcement in downloads
Insufficient policy enforcement in downloads in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page...
Google Chrome Security Bypass Vulnerability (CNVD-2020-29230)
Google Chrome is a web browser from Google, an American company. A security vulnerability exists in Google Chrome versions prior to 83.0.4103.61 that stems from insufficient policy enforcement during download. The vulnerability can be exploited by an attacker to bypass security restrictions with...
DEBIAN-CVE-2020-6402
Insufficient policy enforcement in downloads in Google Chrome on OS X prior to 80.0.3987.87 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension...
DEBIAN-CVE-2019-13709
Insufficient policy enforcement in downloads in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to bypass download restrictions via a crafted HTML page...
Glance: image_download policy not enforced for cached images
OpenStack Image Registry and Delivery Service Glance Folsom, Grizzly before 2013.1.4, and Havana before 2013.2, when the downloadimage policy is configured, does not properly restrict access to cached images, which allows remote authenticated users to read otherwise restricted images via an image...
CVE-2013-4428
OpenStack Image Registry and Delivery Service Glance Folsom, Grizzly before 2013.1.4, and Havana before 2013.2, when the downloadimage policy is configured, does not properly restrict access to cached images, which allows remote authenticated users to read otherwise restricted images via an image...