Lucene search
+L

20 matches found

AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.8 views

Astra Linux – Vulnerability in Chromium

In Google Chrome, policy bypass in downloads before version 147.0.7727.55 allowed a remote attacker to bypass multi-download protections through a crafted HTML page. Chromium security severity: Low...

4.3CVSS6.7AI score0.00159EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2026/04/08 9:20 p.m.11 views

CVE-2026-5900

Policy bypass in Downloads in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to bypass of multi-download protections via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.8AI score0.00159EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/04/15 12:0 a.m.9 views

RHEL 6 : openstack-glance (RHSA-2013:1525)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2013:1525 advisory. The openstack-glance packages provide a service code name Glance that acts as a registry for virtual machine images. A flaw was found in the Glance...

3.5CVSS5.5AI score0.03082EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2024/02/22 3:5 a.m.1 views

SUSE CVE-2024-1675

Insufficient policy enforcement in Download in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS8.6AI score0.10423EPSS
Exploits1References4
OSV
OSV
added 2024/02/21 4:15 a.m.2 views

DEBIAN-CVE-2024-1675

Insufficient policy enforcement in Download in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS8AI score0.10423EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/02/20 12:0 a.m.16 views

PT-2024-1837 · Google +5 · Google Chrome +5

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 122.0.6261.57 Microsoft Edge affected versions not specified Description: The issue is related to insufficient policy enforcement in the Download component, allowing a remote attacker to bypass existing securit...

9.8CVSS6.7AI score0.99735EPSS
Exploits128References1108
SUSE CVE
SUSE CVE
added 2023/02/15 4:10 a.m.2 views

SUSE CVE-2019-13709

Insufficient policy enforcement in downloads in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to bypass download restrictions via a crafted HTML page...

6.5CVSS7.8AI score0.00987EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2023/02/15 4:2 a.m.2 views

SUSE CVE-2020-6487

Insufficient policy enforcement in downloads in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page...

6.5CVSS6.8AI score0.01603EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:2 a.m.1 views

SUSE CVE-2020-6488

Insufficient policy enforcement in downloads in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page...

4.3CVSS5.9AI score0.01544EPSS
Exploits1References5
OSV
OSV
added 2022/09/26 4:15 p.m.3 views

UBUNTU-CVE-2022-3047

Insufficient policy enforcement in Extensions API in Google Chrome prior to 105.0.5195.52 allowed an attacker who convinced a user to install a malicious extension to bypass downloads policy via a crafted HTML page...

6.5CVSS6.8AI score0.0045EPSS
Exploits0References2
OSV
OSV
added 2021/02/09 2:15 p.m.2 views

DEBIAN-CVE-2021-21133

Insufficient policy enforcement in Downloads in Google Chrome prior to 88.0.4324.96 allowed an attacker who convinced a user to download files to bypass navigation restrictions via a crafted HTML page...

6.5CVSS7AI score0.03036EPSS
Exploits0References1
CNVD
CNVD
added 2021/01/20 12:0 a.m.7 views

Google Chrome Download Policy Enforcement Deficiency Vulnerability (CNVD-2021-17310)

Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. A download policy enforcement deficiency vulnerability exists in versions of Google Chrome prior to 88.0.4324.96. An attacker can exploit this vulnerability to bypa...

6.5CVSS5.9AI score0.03036EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/01/20 12:0 a.m.8 views

Google Chrome 安全漏洞

Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. A download policy enforcement deficiency vulnerability exists in versions of Google Chrome prior to 88.0.4324.96. An attacker can exploit this vulnerability to bypa...

6.5CVSS6.9AI score0.03036EPSS
Exploits0References7
OSV
OSV
added 2020/11/03 3:15 a.m.3 views

UBUNTU-CVE-2020-15988

Insufficient policy enforcement in downloads in Google Chrome on Windows prior to 86.0.4240.75 allowed a remote attacker who convinced the user to open files to execute arbitrary code via a crafted HTML page...

6.3CVSS6.2AI score0.01155EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2020/06/15 12:55 p.m.3 views

chromium-browser: Insufficient policy enforcement in downloads

Insufficient policy enforcement in downloads in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page...

6.5CVSS7.4AI score0.01603EPSS
Exploits0References5
CNVD
CNVD
added 2020/05/20 12:0 a.m.1 views

Google Chrome Security Bypass Vulnerability (CNVD-2020-29230)

Google Chrome is a web browser from Google, an American company. A security vulnerability exists in Google Chrome versions prior to 83.0.4103.61 that stems from insufficient policy enforcement during download. The vulnerability can be exploited by an attacker to bypass security restrictions with...

6.5CVSS8.9AI score0.01603EPSS
Exploits0References1
OSV
OSV
added 2020/02/11 3:15 p.m.0 views

DEBIAN-CVE-2020-6402

Insufficient policy enforcement in downloads in Google Chrome on OS X prior to 80.0.3987.87 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension...

8.8CVSS7.3AI score0.02662EPSS
Exploits0References1
OSV
OSV
added 2019/11/25 3:15 p.m.1 views

DEBIAN-CVE-2019-13709

Insufficient policy enforcement in downloads in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to bypass download restrictions via a crafted HTML page...

6.5CVSS7.1AI score0.00987EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2013/11/18 7:19 p.m.4 views

Glance: image_download policy not enforced for cached images

OpenStack Image Registry and Delivery Service Glance Folsom, Grizzly before 2013.1.4, and Havana before 2013.2, when the downloadimage policy is configured, does not properly restrict access to cached images, which allows remote authenticated users to read otherwise restricted images via an image...

3.5CVSS5.8AI score0.03082EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2013/10/16 12:0 a.m.24 views

CVE-2013-4428

OpenStack Image Registry and Delivery Service Glance Folsom, Grizzly before 2013.1.4, and Havana before 2013.2, when the downloadimage policy is configured, does not properly restrict access to cached images, which allows remote authenticated users to read otherwise restricted images via an image...

3.5CVSS5.9AI score0.03082EPSS
Exploits1References2
Rows per page
Query Builder