VYPR

Chrome

by Google

Source repositories

CVEs (5,401)

  • CVE-2020-6414HigFeb 11, 2020
    risk 0.57cvss 8.8epss 0.02

    Insufficient policy enforcement in Safe Browsing in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.

  • CVE-2020-6413HigFeb 11, 2020
    risk 0.57cvss 8.8epss 0.02

    Inappropriate implementation in Blink in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to bypass HTML validators via a crafted HTML page.

  • CVE-2020-6410HigFeb 11, 2020
    risk 0.57cvss 8.8epss 0.02

    Insufficient policy enforcement in navigation in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to confuse the user via a crafted domain name.

  • CVE-2020-6409HigFeb 11, 2020
    risk 0.57cvss 8.8epss 0.02

    Inappropriate implementation in Omnibox in Google Chrome prior to 80.0.3987.87 allowed a remote attacker who convinced the user to enter a URI to bypass navigation restrictions via a crafted domain name.

  • CVE-2020-6406HigFeb 11, 2020
    risk 0.57cvss 8.8epss 0.02

    Use after free in audio in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2020-6404HigFeb 11, 2020
    risk 0.57cvss 8.8epss 0.02

    Inappropriate implementation in Blink in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2020-6402HigFeb 11, 2020
    risk 0.57cvss 8.8epss 0.03

    Insufficient policy enforcement in downloads in Google Chrome on OS X prior to 80.0.3987.87 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension.

  • CVE-2020-6398HigFeb 11, 2020
    risk 0.57cvss 8.8epss 0.02

    Use of uninitialized data in PDFium in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.

  • CVE-2020-6390HigFeb 11, 2020
    risk 0.57cvss 8.8epss 0.03

    Out of bounds memory access in streams in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2020-6389HigFeb 11, 2020
    risk 0.57cvss 8.8epss 0.02

    Out of bounds write in WebRTC in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruption via a crafted video stream.

  • CVE-2020-6388HigFeb 11, 2020
    risk 0.57cvss 8.8epss 0.02

    Out of bounds access in WebAudio in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2020-6387HigFeb 11, 2020
    risk 0.57cvss 8.8epss 0.02

    Out of bounds write in WebRTC in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruption via a crafted video stream.

  • CVE-2020-6385HigFeb 11, 2020
    risk 0.57cvss 8.8epss 0.02

    Insufficient policy enforcement in storage in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to bypass site isolation via a crafted HTML page.

  • CVE-2020-6382HigFeb 11, 2020
    risk 0.57cvss 8.8epss 0.02

    Type confusion in JavaScript in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2020-6381HigFeb 11, 2020
    risk 0.57cvss 8.8epss 0.02

    Integer overflow in JavaScript in Google Chrome on ChromeOS and Android prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2020-6380HigFeb 11, 2020
    risk 0.57cvss 8.8epss 0.01

    Insufficient policy enforcement in extensions in Google Chrome prior to 79.0.3945.130 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted Chrome Extension.

  • CVE-2020-6379HigFeb 11, 2020
    risk 0.57cvss 8.8epss 0.01

    Use after free in V8 in Google Chrome prior to 79.0.3945.130 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2020-6378HigFeb 11, 2020
    risk 0.57cvss 8.8epss 0.01

    Use after free in speech in Google Chrome prior to 79.0.3945.130 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2020-6377HigJan 10, 2020
    risk 0.57cvss 8.8epss 0.01

    Use after free in audio in Google Chrome prior to 79.0.3945.117 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2019-13747HigDec 10, 2019
    risk 0.57cvss 8.8epss 0.01

    Uninitialized data in rendering in Google Chrome on Android prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Page 76 of 271