Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

821 matches found

Prion
Prionadded 2019/12/10 10:15 p.m.17 views

Design/Logic Flaw

Insufficient policy enforcement in developer tools in Google Chrome prior to 79.0.3945.79 allowed a local attacker to obtain potentially sensitive information from process memory via a crafted HTML page...

4.3CVSS6.1AI score0.00846EPSS
Exploits0References10Affected Software7
UbuntuCve
UbuntuCveadded 2019/12/10 10:15 p.m.18 views

CVE-2019-13748

Insufficient policy enforcement in developer tools in Google Chrome prior to 79.0.3945.79 allowed a local attacker to obtain potentially sensitive information from process memory via a crafted HTML page...

6.5CVSS6.9AI score0.00846EPSS
Exploits0References3
CVE
CVEadded 2019/12/10 9:1 p.m.246 views

CVE-2019-13748

CVE-2019-13748 affects Google Chrome (and Chromium) prior to 79.0.3945.79. It arises from insufficient policy enforcement in developer tools, allowing a local attacker to extract potentially sensitive information from process memory through a crafted HTML page. The issue is documented across mult...

6.5CVSS6AI score0.00846EPSS
Exploits0References10Affected Software1
Cvelist
Cvelistadded 2019/12/10 9:1 p.m.18 views

CVE-2019-13748

Insufficient policy enforcement in developer tools in Google Chrome prior to 79.0.3945.79 allowed a local attacker to obtain potentially sensitive information from process memory via a crafted HTML page...

6.2AI score0.00846EPSS
Exploits0References10
RedHat Linux
RedHat Linuxadded 2019/12/10 11:53 a.m.2 views

Moderate: Red Hat Enhancement Advisory: new packages: go-toolset-1.12

New go-toolset-1.12 packages are now available as a part of Red Hat Developer Tools for Red Hat Enterprise Linux. Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. This enhancement update adds the go-toolset-1.12 packages to Red Hat Develope...

9.8CVSS7.2AI score0.02534EPSS
Exploits1References4
Kaspersky
Kasperskyadded 2019/12/10 12:0 a.m.46 views

KLA11618 Multiple vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Git for Visual Studio can be exploited...

9.3CVSS9AI score0.2462EPSS
Exploits0References9
Kaspersky
Kasperskyadded 2019/12/10 12:0 a.m.106 views

KLA11621 Multiple vulnerabilities in Google Chrome

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, cause denial of service, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. Use after...

8.8CVSS9.4AI score0.39522EPSS
Exploits5References3
OSV
OSVadded 2019/11/25 3:15 p.m.9 views

CVE-2019-13683

Insufficient policy enforcement in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS8.4AI score
Exploits0References2
OSV
OSVadded 2019/11/25 3:15 p.m.1 views

DEBIAN-CVE-2019-13673

Insufficient data validation in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

7.4CVSS7.1AI score0.00344EPSS
Exploits0References1
OSV
OSVadded 2019/11/25 3:15 p.m.1 views

DEBIAN-CVE-2019-13668

Insufficient policy enforcement in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

7.4CVSS7.1AI score0.00344EPSS
Exploits0References1
OSV
OSVadded 2019/11/25 3:15 p.m.0 views

UBUNTU-CVE-2019-13683

Insufficient policy enforcement in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS6.7AI score0.00336EPSS
Exploits0References2
OSV
OSVadded 2019/11/25 3:15 p.m.1 views

UBUNTU-CVE-2019-13668

Insufficient policy enforcement in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

7.4CVSS7.2AI score0.00344EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2019/11/25 3:15 p.m.20 views

CVE-2019-13683

Insufficient policy enforcement in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS6.8AI score0.00336EPSS
Exploits0References1
UbuntuCve
UbuntuCveadded 2019/11/25 3:15 p.m.12 views

CVE-2019-13668

Insufficient policy enforcement in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

7.4CVSS7AI score0.00344EPSS
Exploits0References1
OSV
OSVadded 2019/11/25 3:15 p.m.0 views

UBUNTU-CVE-2019-13673

Insufficient data validation in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

7.4CVSS7.2AI score0.00344EPSS
Exploits0References2
CVE
CVEadded 2019/11/25 2:22 p.m.260 views

CVE-2019-13683

CVE-2019-13683 affects Google Chrome prior to 77.0.3865.75, where insufficient policy enforcement in developer tools could allow a crafted HTML page to leak cross-origin data. The vulnerability is a cross-origin data disclosure via the browser’s developer tools surface, with network-vector exposu...

6.5CVSS6.4AI score0.00336EPSS
Exploits0References2Affected Software1
Hacker One
Hacker Oneadded 2019/11/24 11:15 p.m.15 views

Grammarly: Unauthenticated users can access all food.grammarly.io user's data

Summary: The food.grammarly.io site uses the Meteor framework, which uses publications and methods to communicate between the backend and frontend. Although the site seems to require being authenticated as a Grammarly employee to use it, most methods and publications work without being...

Exploits0
Kaspersky
Kasperskyadded 2019/11/12 12:0 a.m.34 views

KLA11607 Multiple vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Visual Studio can be exploited remotely ...

6.5CVSS6.3AI score0.07567EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2019/10/29 9:30 a.m.1 views

chromium-browser: Global window leak via console

Insufficient policy enforcement in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

7.4CVSS7.4AI score0.00344EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2019/10/16 6:22 p.m.21 views

CVE-2019-13673

Insufficient data validation in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

7.4CVSS3.2AI score0.00344EPSS
Exploits0References4
Rows per page
Query Builder