CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2025/08/21 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2018-6050

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect security UI in Omnibox in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HT...

6.5CVSS7.4AI score0.00909EPSS

Tenable Nessus•added 2025/08/21 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2018-6051

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - XSS Auditor in Google Chrome prior to 64.0.3282.119, did not ensure the reporting URL was in the same origin as the page it was on, which allowed a remote...

4.3CVSS6.7AI score0.0057EPSS

Tenable Nessus•added 2025/08/20 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2018-6042

4.3CVSS6.8AI score0.00909EPSS

Tenable Nessus•added 2025/08/19 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2018-6032

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient policy enforcement in Blink in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user cross-origin data via a...

6.5CVSS7.4AI score0.00756EPSS

SUSE CVE•added 2023/02/15 4:31 a.m.•1 views

SUSE CVE-2018-6033

Insufficient data validation in Downloads in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially run arbitrary code outside sandbox via a crafted Chrome Extension...

8.8CVSS9AI score0.01484EPSS

SUSE CVE•added 2023/02/15 4:31 a.m.•2 views

SUSE CVE-2018-6042

Incorrect security UI in Omnibox in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

4.3CVSS8.3AI score0.00909EPSS

VulnCheck KEV•added 2022/07/20 12:0 a.m.•3 views

VulnCheck KEV: CVE-2018-6055

Insufficient policy enforcement in Catalog Service in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially run arbitrary code outside sandbox via a crafted HTML page...

8.8CVSS7.5AI score0.00535EPSS

Exploits0References1

4.3CVSS7.3AI score0.00838EPSS

CVE-2018-6047

Insufficient policy enforcement in WebGL in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user redirect URL via a crafted HTML page...

6.5CVSS7.4AI score0.00888EPSS

CVE-2018-6036

Insufficient data validation in V8 in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user data via a crafted HTML page...

6.5CVSS7AI score0.00888EPSS

UBUNTU-CVE-2018-6037

Inappropriate implementation in autofill in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to obtain autofill data with insufficient user gestures via a crafted HTML page...

Exploits0References3

3.3CVSS6.7AI score0.0017EPSS

UBUNTU-CVE-2018-6053

Inappropriate implementation in New Tab Page in Google Chrome prior to 64.0.3282.119 allowed a local attacker to view website thumbnail images after clearing browser data via a crafted HTML page...

Exploits0References3

OSV•added 2018/09/25 2:29 p.m.•1 views

CVE-2018-6035

Insufficient policy enforcement in DevTools in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user local file data via a crafted Chrome Extension...

8.8CVSS7.4AI score0.01484EPSS

6.5CVSS7.3AI score0.00275EPSS

UBUNTU-CVE-2018-6119

Incorrect security UI in Omnibox in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

Exploits0References4

Prion•added 2018/09/25 2:29 p.m.•25 views

Code injection

Incorrect security UI in permissions prompt in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to spoof the origin to which permission is granted via a crafted HTML page...

4.3CVSS6.3AI score0.00688EPSS

Exploits0References6Affected Software5

Prion•added 2018/09/25 2:29 p.m.•14 views

Design/Logic Flaw

Insufficient policy enforcement in Blink in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak referrer information via a crafted HTML page...

4.3CVSS4.8AI score0.00773EPSS

Exploits0References6Affected Software5

4.3CVSS7.3AI score0.00909EPSS

UBUNTU-CVE-2018-6041

Incorrect security UI in navigation in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

Exploits0References3

Cvelist•added 2018/09/25 2:0 p.m.•14 views

CVE-2018-6045

Insufficient policy enforcement in DevTools in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user local file data via a crafted Chrome Extension...

5.8AI score0.00888EPSS

RedHat Linux•added 2018/02/01 4:6 p.m.•1 views

chromium-browser: same origin bypass in shared worker

Insufficient policy enforcement in Blink in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user cross-origin data via a crafted HTML page...

6.5CVSS7.4AI score0.00756EPSS

RedHat Linux•added 2018/02/01 4:6 p.m.•3 views

chromium-browser: ui spoof in permissions

Incorrect security UI in permissions prompt in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to spoof the origin to which permission is granted via a crafted HTML page...

6.5CVSS7.4AI score0.00688EPSS