Lucene search
K

10 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:30 a.m.2 views

SUSE CVE-2018-6116

A nullptr dereference in WebAssembly in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page...

6.5CVSS8.8AI score0.01424EPSS
Exploits0References6
CNVD
CNVD
added 2019/05/22 12:0 a.m.4 views

Mozilla Firefox Buffer Overflow Vulnerability (CNVD-2019-25516)

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla Firefox version 66. An attacker could exploit this vulnerability by tricking a user into visiting a specially crafted website to execute arbitrary code or cau...

9.8CVSS8.9AI score0.01312EPSS
Exploits0References1
CNVD
CNVD
added 2019/01/14 12:0 a.m.3 views

Google Chrome for macOS Fullscreen UI Fake Vulnerability

Google Chrome for macOS is a web browser developed by Google for the macOS platform.Fullscreen is one of the fullscreen components. A security vulnerability exists in Fullscreen in versions of Google Chrome prior to 66.0.3359.117 for macOS. A remote attacker can exploit this vulnerability to spoo...

6.5CVSS8.6AI score0.01453EPSS
Exploits0References1
OSV
OSV
added 2018/12/04 5:29 p.m.2 views

CVE-2018-6152

The implementation of the Page.downloadBehavior backend unconditionally marked downloaded files as safe, regardless of file type in Google Chrome prior to 66.0.3359.117 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted...

9.6CVSS5.8AI score0.01315EPSS
Exploits0References6
OSV
OSV
added 2018/12/04 5:29 p.m.0 views

CVE-2018-6104

Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name...

6.5CVSS7.3AI score0.01391EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2018/12/04 5:29 p.m.15 views

CVE-2018-6104

Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name...

6.5CVSS7AI score0.01391EPSS
Exploits0References2
OSV
OSV
added 2018/12/04 5:29 p.m.4 views

UBUNTU-CVE-2018-6088

An iterator-invalidation bug in PDFium in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file...

8.8CVSS7.7AI score0.02422EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2018/04/23 12:36 p.m.4 views

chromium-browser: Fullscreen UI spoof

A JavaScript focused window could overlap the fullscreen notification in Fullscreen in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to obscure the full screen warning via a crafted HTML page...

6.5CVSS7.4AI score0.01485EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2018/04/23 12:36 p.m.4 views

chromium-browser: CORS bypass in ServiceWorker

A lack of CORS checks in Blink in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to leak limited cross-origin data via a crafted HTML page...

6.5CVSS7.4AI score0.01597EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2018/04/23 12:36 p.m.7 views

chromium-browser: CSP bypass

Incorrect enforcement of CSP for tags in Blink in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to bypass content security policy via a crafted HTML page...

6.5CVSS7.4AI score0.01462EPSS
Exploits0References5
Rows per page
Query Builder