|
222861
|
4.3 |
MEDIUM
Network
|
google
opensuse
|
chrome
backports_sle
|
Incorrect security UI in full screen mode in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to hide security UI via a crafted HTML page.
|
CWE-922
Insecure Storage of Sensitive Information
|
CVE-2019-13719
|
2024-11-21 13:25 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222862
|
4.3 |
MEDIUM
Network
|
google
opensuse
|
chrome
backports_sle
|
Insufficient data validation in Omnibox in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name.
|
NVD-CWE-noinfo
|
CVE-2019-13718
|
2024-11-21 13:25 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222863
|
4.3 |
MEDIUM
Network
|
google
opensuse
|
chrome
backports_sle
|
Incorrect security UI in full screen mode in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to hide security UI via a crafted HTML page.
|
CWE-922
Insecure Storage of Sensitive Information
|
CVE-2019-13717
|
2024-11-21 13:25 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222864
|
4.3 |
MEDIUM
Network
|
google
opensuse
|
chrome
backports_sle
|
Insufficient policy enforcement in service workers in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.
|
CWE-863
Incorrect Authorization
|
CVE-2019-13716
|
2024-11-21 13:25 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222865
|
4.3 |
MEDIUM
Network
|
google
opensuse
|
chrome
backports_sle
|
Insufficient validation of untrusted input in Omnibox in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name.
|
CWE-290
Authentication Bypass by Spoofing
|
CVE-2019-13715
|
2024-11-21 13:25 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222866
|
6.1 |
MEDIUM
Network
|
google
opensuse
|
chrome
backports_sle
|
Insufficient validation of untrusted input in Color Enhancer extension in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to inject CSS into an HTML page via a crafted URL.
|
CWE-94
Code Injection
|
CVE-2019-13714
|
2024-11-21 13:25 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222867
|
6.5 |
MEDIUM
Network
|
google
opensuse
|
chrome
backports
|
Insufficient policy enforcement in JavaScript in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
|
NVD-CWE-noinfo
|
CVE-2019-13713
|
2024-11-21 13:25 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222868
|
5.3 |
MEDIUM
Network
|
google
opensuse
|
chrome
backports
|
Insufficient policy enforcement in JavaScript in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
|
NVD-CWE-noinfo
|
CVE-2019-13711
|
2024-11-21 13:25 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222869
|
4.3 |
MEDIUM
Network
|
google
opensuse
|
chrome
backports_sle
|
Insufficient validation of untrusted input in downloads in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to bypass download restrictions via a crafted HTML page.
|
NVD-CWE-noinfo
|
CVE-2019-13710
|
2024-11-21 13:25 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222870
|
6.5 |
MEDIUM
Network
|
google
opensuse
|
chrome
backports_sle
|
Insufficient policy enforcement in downloads in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to bypass download restrictions via a crafted HTML page.
|
CWE-290
Authentication Bypass by Spoofing
|
CVE-2019-13709
|
2024-11-21 13:25 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
