Lucene search
K

23 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/21 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2017-15427

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient policy enforcement in Omnibox in Google Chrome prior to 63.0.3239.84 allowed a socially engineered user to XSS themselves by dragging and dropping ...

6.1CVSS7.3AI score0.00856EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/21 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2017-15426

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient policy enforcement in Omnibox in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to perform domain spoofing via IDN homographs in a...

6.5CVSS7.3AI score0.01161EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2017-15411

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in PDFium in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file...

8.8CVSS8.1AI score0.01584EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:38 a.m.4 views

SUSE CVE-2017-15407

Out-of-bounds Write in the QUIC networking stack in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to gain code execution via a malicious server...

8.8CVSS9.4AI score0.02427EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:38 a.m.4 views

SUSE CVE-2017-15415

Incorrect serialization in IPC in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to leak the value of a pointer via a crafted HTML page...

6.5CVSS8.5AI score0.01741EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:38 a.m.3 views

SUSE CVE-2017-15430

Insufficient data validation in Chromecast plugin in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page...

4.3CVSS8.5AI score0.00523EPSS
Exploits0References7
CNVD
CNVD
added 2018/08/30 12:0 a.m.3 views

Google Chrome Omnibox Spoofing Vulnerability (CNVD-2018-20142)

Google Chrome is a web browser developed by Google, Inc. and Omnibox is a real-time search engine. A security vulnerability exists in Omnibox in versions of Google Chrome prior to 63.0.3239.84, which stems from insufficient policy enforcement. The vulnerability can be exploited by remote attacker...

6.5CVSS7.2AI score0.01161EPSS
Exploits0References1
CNVD
CNVD
added 2018/08/30 12:0 a.m.5 views

Google Chrome Omnibox Cross-Site Scripting Vulnerability

Google Chrome is a web browser developed by Google, Inc. and Omnibox is a real-time search engine. A security vulnerability exists in Omnibox in versions prior to Google Chrome 63.0.3239.84, which stems from inadequate policy enforcement. An attacker can execute XSS by dragging and dropping a...

6.1CVSS7AI score0.00856EPSS
Exploits0References1
CNVD
CNVD
added 2018/08/30 12:0 a.m.13 views

Google Chrome Information Disclosure Vulnerability (CNVD-2018-20146)

Google Chrome is a web browser developed by the American company Google Google. A security vulnerability exists in the Resource Timing API in Google Chrome versions prior to 63.0.3239.84, which stems from insufficient policy enforcement. The vulnerability can be exploited by a remote attacker to...

6.5CVSS7AI score0.01287EPSS
Exploits0References1
OSV
OSV
added 2018/08/28 7:29 p.m.1 views

CVE-2017-15426

Insufficient policy enforcement in Omnibox in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to perform domain spoofing via IDN homographs in a crafted domain name...

6.5CVSS7.3AI score
Exploits0References5
OSV
OSV
added 2018/08/28 7:29 p.m.2 views

CVE-2017-15418

Use of uninitialized memory in Skia in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page...

4.3CVSS7.3AI score0.01634EPSS
Exploits0References5
OSV
OSV
added 2018/08/28 7:29 p.m.2 views

CVE-2017-15417

Inappropriate implementation in Skia canvas composite operations in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

5.3CVSS7.4AI score0.01511EPSS
Exploits0References5
OSV
OSV
added 2018/08/28 7:29 p.m.5 views

CVE-2017-15415

Incorrect serialization in IPC in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to leak the value of a pointer via a crafted HTML page...

6.5CVSS7.3AI score0.01741EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2018/08/28 7:29 p.m.29 views

CVE-2017-15426

Insufficient policy enforcement in Omnibox in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to perform domain spoofing via IDN homographs in a crafted domain name...

6.5CVSS7AI score0.01161EPSS
Exploits0References1
OSV
OSV
added 2018/08/28 7:29 p.m.3 views

UBUNTU-CVE-2017-15409

Heap buffer overflow in Skia in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.5AI score0.01625EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/12/11 12:0 a.m.60 views

Google Chrome < 63.0.3239.84 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 63.0.3239.84. It is, therefore, affected by multiple vulnerabilities as referenced in the 201712stable-channel-update-for-desktop advisory. - Type confusion in WebAssembly in V8 in Google Chrome prior to 63.0.3239.84...

8.8CVSS7.7AI score0.02963EPSS
Exploits1References41
RedHat Linux
RedHat Linux
added 2017/12/07 7:30 p.m.2 views

chromium-browser: use after free in pdfium

Use after free in PDFium in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file...

8.8CVSS7.4AI score0.01584EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2017/12/07 7:30 p.m.8 views

chromium-browser: type confusion in webassembly

Type confusion in WebAssembly in V8 in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.4AI score0.01661EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2017/12/07 7:30 p.m.4 views

chromium-browser: insufficient blocking of javascript in omnibox

Insufficient policy enforcement in Omnibox in Google Chrome prior to 63.0.3239.84 allowed a socially engineered user to XSS themselves by dragging and dropping a javascript: URL into the URL bar...

6.1CVSS7.3AI score0.00856EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2017/12/07 7:30 p.m.4 views

chromium-browser: pointer information disclosure in ipc call

Incorrect serialization in IPC in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to leak the value of a pointer via a crafted HTML page...

6.5CVSS7.4AI score0.01741EPSS
Exploits0References5
Rows per page
Query Builder