|
222951
|
4.3 |
MEDIUM
Network
|
google
opensuse
|
chrome
backports_sle
|
Incorrect security UI in full screen mode in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to hide security UI via a crafted HTML page.
|
CWE-922
Insecure Storage of Sensitive Information
|
CVE-2019-13719
|
2024-11-21 13:25 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222952
|
4.3 |
MEDIUM
Network
|
google
opensuse
|
chrome
backports_sle
|
Insufficient data validation in Omnibox in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name.
|
NVD-CWE-noinfo
|
CVE-2019-13718
|
2024-11-21 13:25 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222953
|
4.3 |
MEDIUM
Network
|
google
opensuse
|
chrome
backports_sle
|
Incorrect security UI in full screen mode in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to hide security UI via a crafted HTML page.
|
CWE-922
Insecure Storage of Sensitive Information
|
CVE-2019-13717
|
2024-11-21 13:25 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222954
|
4.3 |
MEDIUM
Network
|
google
opensuse
|
chrome
backports_sle
|
Insufficient policy enforcement in service workers in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.
|
CWE-863
Incorrect Authorization
|
CVE-2019-13716
|
2024-11-21 13:25 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222955
|
4.3 |
MEDIUM
Network
|
google
opensuse
|
chrome
backports_sle
|
Insufficient validation of untrusted input in Omnibox in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name.
|
CWE-290
Authentication Bypass by Spoofing
|
CVE-2019-13715
|
2024-11-21 13:25 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222956
|
6.1 |
MEDIUM
Network
|
google
opensuse
|
chrome
backports_sle
|
Insufficient validation of untrusted input in Color Enhancer extension in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to inject CSS into an HTML page via a crafted URL.
|
CWE-94
Code Injection
|
CVE-2019-13714
|
2024-11-21 13:25 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222957
|
6.5 |
MEDIUM
Network
|
google
opensuse
|
chrome
backports
|
Insufficient policy enforcement in JavaScript in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
|
NVD-CWE-noinfo
|
CVE-2019-13713
|
2024-11-21 13:25 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222958
|
5.3 |
MEDIUM
Network
|
google
opensuse
|
chrome
backports
|
Insufficient policy enforcement in JavaScript in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
|
NVD-CWE-noinfo
|
CVE-2019-13711
|
2024-11-21 13:25 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222959
|
4.3 |
MEDIUM
Network
|
google
opensuse
|
chrome
backports_sle
|
Insufficient validation of untrusted input in downloads in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to bypass download restrictions via a crafted HTML page.
|
NVD-CWE-noinfo
|
CVE-2019-13710
|
2024-11-21 13:25 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222960
|
6.5 |
MEDIUM
Network
|
google
opensuse
|
chrome
backports_sle
|
Insufficient policy enforcement in downloads in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to bypass download restrictions via a crafted HTML page.
|
CWE-290
Authentication Bypass by Spoofing
|
CVE-2019-13709
|
2024-11-21 13:25 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
