Lucene search
K

7 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:17 a.m.4 views

SUSE CVE-2019-5758

Incorrect object lifecycle management in Blink in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS8.7AI score0.01666EPSS
Exploits0References7
OSV
OSV
added 2020/11/12 7:15 p.m.3 views

CVE-2020-12325

Improper buffer restrictions in some IntelR ThunderboltTM DCH drivers for Windows before version 72 may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS6AI score0.00319EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2020/01/13 2:27 p.m.5 views

Mozilla: Type Confusion in XPCVariant.cpp

Due to a missing case handling object types, a type confusion vulnerability could occur, resulting in a crash. We presume that with enough effort that it could be exploited to run arbitrary code. This vulnerability affects Firefox ESR 68.4 and Firefox 72...

8.8CVSS7.4AI score0.02489EPSS
Exploits0References5
OSV
OSV
added 2020/01/08 10:15 p.m.1 views

DEBIAN-CVE-2019-17023

After a HelloRetryRequest has been sent, the client may negotiate a lower protocol that TLS 1.3, resulting in an invalid state transition in the TLS State Machine. If the client gets into this state, incoming Application Data records will be ignored. This vulnerability affects Firefox 72...

6.5CVSS6.8AI score0.0134EPSS
Exploits0References1
OSV
OSV
added 2019/06/27 5:15 p.m.3 views

UBUNTU-CVE-2019-5786

Object lifetime issue in Blink in Google Chrome prior to 72.0.3626.121 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page...

6.5CVSS7.1AI score0.61537EPSS
Exploits10References3
RedHat Linux
RedHat Linux
added 2019/02/12 2:46 a.m.8 views

chromium-browser: Use after free in PDFium

Inappropriate memory management when caching in PDFium in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file...

8.8CVSS7.8AI score0.02697EPSS
Exploits0References5
CNVD
CNVD
added 2019/01/31 12:0 a.m.3 views

Google Chrome Insufficient Policy Enforcement Vulnerability (CNVD-2019-23565)

Chrome is a web browsing tool developed by Google. A policy enforcement insufficiency vulnerability exists in Omnibox in versions of Google Chrome prior to 72.0.3626.81. An attacker can exploit the vulnerability to spoof the contents of the Omnibox URL bar via a crafted domain name...

6.5CVSS8.5AI score0.01468EPSS
Exploits0References1
Rows per page
Query Builder