CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

790 matches found

Kaspersky•added 2019/12/10 12:0 a.m.•44 views

KLA11618 Multiple vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Git for Visual Studio can be exploited...

9.3CVSS9AI score0.2462EPSS

Exploits0References9

Kaspersky•added 2019/12/10 12:0 a.m.•103 views

KLA11621 Multiple vulnerabilities in Google Chrome

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, cause denial of service, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. Use after...

8.8CVSS9.4AI score0.39522EPSS

Exploits5References3

OSV•added 2019/11/25 3:15 p.m.•8 views

CVE-2019-13683

Insufficient policy enforcement in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS8.4AI score

Exploits0References2

OSV•added 2019/11/25 3:15 p.m.•1 views

DEBIAN-CVE-2019-13673

Insufficient data validation in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

7.4CVSS7.1AI score0.00344EPSS

Exploits0References1

OSV•added 2019/11/25 3:15 p.m.•1 views

DEBIAN-CVE-2019-13668

Insufficient policy enforcement in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

7.4CVSS7.1AI score0.00344EPSS

Exploits0References1

OSV•added 2019/11/25 3:15 p.m.•0 views

UBUNTU-CVE-2019-13683

Insufficient policy enforcement in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS6.7AI score0.00336EPSS

Exploits0References2

OSV•added 2019/11/25 3:15 p.m.•1 views

UBUNTU-CVE-2019-13668

Insufficient policy enforcement in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

7.4CVSS7.2AI score0.00344EPSS

Exploits0References2

UbuntuCve•added 2019/11/25 3:15 p.m.•20 views

CVE-2019-13683

Insufficient policy enforcement in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS6.8AI score0.00336EPSS

Exploits0References1

UbuntuCve•added 2019/11/25 3:15 p.m.•12 views

CVE-2019-13668

Insufficient policy enforcement in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

7.4CVSS7AI score0.00344EPSS

Exploits0References1

OSV•added 2019/11/25 3:15 p.m.•0 views

UBUNTU-CVE-2019-13673

Insufficient data validation in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

7.4CVSS7.2AI score0.00344EPSS

Exploits0References2

CVE•added 2019/11/25 2:22 p.m.•259 views

CVE-2019-13683

CVE-2019-13683 affects Google Chrome prior to 77.0.3865.75, where insufficient policy enforcement in developer tools could allow a crafted HTML page to leak cross-origin data. The vulnerability is a cross-origin data disclosure via the browser’s developer tools surface, with network-vector exposu...

6.5CVSS6.4AI score0.00336EPSS

Exploits0References2Affected Software1

Hacker One•added 2019/11/24 11:15 p.m.•14 views

Grammarly: Unauthenticated users can access all food.grammarly.io user's data

Summary: The food.grammarly.io site uses the Meteor framework, which uses publications and methods to communicate between the backend and frontend. Although the site seems to require being authenticated as a Grammarly employee to use it, most methods and publications work without being...

Exploits0

Kaspersky•added 2019/11/12 12:0 a.m.•31 views

KLA11607 Multiple vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Visual Studio can be exploited remotely ...

6.5CVSS6.3AI score0.07567EPSS

Exploits0References4

RedHat Linux•added 2019/10/29 9:30 a.m.•1 views

chromium-browser: Global window leak via console

Insufficient policy enforcement in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

7.4CVSS7.4AI score0.00344EPSS

Exploits0References5

RedhatCVE•added 2019/10/16 6:22 p.m.•20 views

CVE-2019-13673

Insufficient data validation in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

7.4CVSS3.2AI score0.00344EPSS

Exploits0References4

Kaspersky•added 2019/10/08 12:0 a.m.•28 views

KLA11575 Multiple vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Azure Stack can be exploited remote...

10CVSS8AI score0.03273EPSS

Exploits0References6

Kaspersky•added 2019/09/19 12:0 a.m.•33 views

KLA11741 Multiple vulnerabilities in Opera

Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, cause denial of service, spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Policy enforcement...

9.6CVSS9.1AI score0.00483EPSS

Exploits0References4

Kaspersky•added 2019/09/10 12:0 a.m.•62 views

KLA11554 Multiple vulnerabilities in Microsoft Developer tools

Multiple vulnerabilities were found in Microsoft Developer tools. Malicious users can exploit these vulnerabilities to gain privileges, cause denial of service, execute arbitrary code, spoof user interface, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation...

9.8CVSS8.9AI score0.26049EPSS

Exploits1References31

RedHat Linux•added 2019/08/21 11:44 a.m.•101 views

Important: Red Hat Security Advisory: Red Hat 3scale API Management 2.6.0 release and security update

A security update for Red Hat 3scale API Management Platform is now available from the Red Hat Container Catalog. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...

9.8CVSS6.6AI score0.08454EPSS

Exploits2References3

OpenVAS•added 2019/08/14 12:0 a.m.•36 views

Debian: Security Advisory (DSA-4500-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.6CVSS7.7AI score0.73662EPSS

Exploits9References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by