A vulnerability in the chrome.debugger API of Google Chrome’s DevTools allows a malicious actor to persuade users to install a malicious extension and execute arbitrary code.

The vulnerability in the chrome.debugger API of Google Chrome’s DevTools exists due to insufficient testing of input data. Exploiting this vulnerability can allow a malicious actor to persuade a user to install a malicious extension and execute arbitrary code with its help...

The vulnerability of Google Chrome’s DevTools component allows a hacker to replace the user interface.

The vulnerability of Google Chrome’s DevTools component is related to security configuration errors. Exploiting this vulnerability could allow a malicious actor to replace the user interface with a specially created Chrome extension...

The vulnerability in the set of tools provided by Google Chrome’s DevTools allows a perpetrator to gain unauthorized access to local files.

The vulnerability of the DevTools set of tools in the Google Chrome browser is related to the absence of the “Allow access to file URLs” option. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to local files through a specially created Chrome...

The vulnerability of Google Chrome’s DevTools component allows a hacker to trigger a service failure, thereby compromising the confidentiality and integrity of protected data.

The vulnerability of Google Chrome’s DevTools component is related to insufficient neutralization of special elements passed in URIs. Exploiting this vulnerability can allow an attacker to cause service failures, violate the confidentiality and integrity of protected data through a specially...

The vulnerability of the DevTools set of tools in the Google Chrome web browser allows a hacker to gain unauthorized access to information.

The vulnerability in the set of tools provided by Google Chrome’s DevTools is related to insufficient testing of extension capabilities. Exploiting this vulnerability allows an attacker operating remotely to gain unauthorized access to information...

DEBIAN-CVE-2019-5783

Missing URI encoding of untrusted input in DevTools in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform a Dangling Markup Injection attack via a crafted HTML page...

UBUNTU-CVE-2019-5783

Missing URI encoding of untrusted input in DevTools in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform a Dangling Markup Injection attack via a crafted HTML page...

CVE-2019-5783

Missing URI encoding of untrusted input in DevTools in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform a Dangling Markup Injection attack via a crafted HTML page...

Google Chrome Insufficient Policy Enforcement Vulnerability (CNVD-2019-23567)

Chrome is a web browsing tool developed by Google. A policy enforcement deficiency vulnerability exists in DevTools in versions of Google Chrome prior to 72.0.3626.81. By exploiting this vulnerability, an attacker is able to convince a user to read local files by installing a malicious extension...

Google Chrome DevTools Memory Misreference Vulnerability

Google Chrome is the United States Google Google company developed a Web browser. Devtools is one of the development and debugging tools. A memory misreference vulnerability exists in DevTools in versions of Google Chrome prior to 66.0.3359.117. A local attacker can exploit this vulnerability to...

Google Chrome DevTools Navigation Restriction Bypass Vulnerability

Google Chrome is the United States Google Google company developed a Web browser. Devtools is one of the development and debugging tools. A security vulnerability exists in DevTools in versions of Google Chrome prior to 66.0.3359.117, which stems from the program's failure to handle URLs correctl...

CVE-2018-6140

Allowing the chrome.debugger API to attach to Web UI pages in DevTools in Google Chrome prior to 67.0.3396.62 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension...

CVE-2018-16081

Allowing the chrome.debugger API to run on file:// URLs in DevTools in Google Chrome prior to 69.0.3497.81 allowed an attacker who convinced a user to install a malicious extension to access files on the local file system without file access permission via a crafted Chrome Extension...

UBUNTU-CVE-2018-6139

Insufficient target checks on the chrome.debugger API in DevTools in Google Chrome prior to 67.0.3396.62 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension...

Google Chrome DevTools Code Execution Vulnerability

Google Chrome is the United States Google Google company developed a Web browser. Devtools is one of the development and debugging tools. A security vulnerability exists in DevTools in versions of Google Chrome prior to 66.0.3359.106, which stems from the program's failure to adequately protect...

Design/Logic Flaw

A lack of host validation in DevTools in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to execute arbitrary code via a crafted HTML page, if the user is running a remote DevTools debugging server...

UBUNTU-CVE-2018-6101

A lack of host validation in DevTools in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to execute arbitrary code via a crafted HTML page, if the user is running a remote DevTools debugging server...

CVE-2018-6045

Insufficient policy enforcement in DevTools in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user local file data via a crafted Chrome Extension...

UBUNTU-CVE-2018-6035

Insufficient policy enforcement in DevTools in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user local file data via a crafted Chrome Extension...

UBUNTU-CVE-2018-6045

Insufficient policy enforcement in DevTools in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user local file data via a crafted Chrome Extension...