|
209171
|
8.8 |
HIGH
Network
|
google
fedoraproject
opensuse
debian
|
chrome
fedora
backports_sle
debian_linux
|
Use after free in printing in Google Chrome prior to 86.0.4240.75 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
|
CWE-416
Use After Free
|
CVE-2020-15971
|
2024-11-21 14:06 |
2020-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209172
|
8.8 |
HIGH
Network
|
google
fedoraproject
opensuse
debian
|
chrome
fedora
backports_sle
debian_linux
|
Use after free in NFC in Google Chrome prior to 86.0.4240.75 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
|
CWE-416
Use After Free
|
CVE-2020-15970
|
2024-11-21 14:06 |
2020-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209173
|
8.8 |
HIGH
Network
|
google
debian
fedoraproject
opensuse
apple
|
chrome
debian_linux
fedora
backports_sle
ipados
safari
watchos
macos
tvos
iphone_os
|
Use after free in WebRTC in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-787
CWE-416
Out-of-bounds Write
Use After Free
|
CVE-2020-15969
|
2024-11-21 14:06 |
2020-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209174
|
8.8 |
HIGH
Network
|
google
debian
fedoraproject
opensuse
|
chrome
debian_linux
fedora
backports_sle
|
Use after free in Blink in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-416
Use After Free
|
CVE-2020-15968
|
2024-11-21 14:06 |
2020-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209175
|
8.8 |
HIGH
Network
|
google
fedoraproject
opensuse
debian
|
chrome
fedora
backports_sle
debian_linux
|
Use after free in payments in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.
|
CWE-416
Use After Free
|
CVE-2020-15967
|
2024-11-21 14:06 |
2020-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209176
|
5.4 |
MEDIUM
Network
|
ea
|
origin_client
|
A cross-site scripting (XSS) vulnerability exists in the Origin Client for Mac and PC 10.5.86 or earlier that could allow a remote attacker to execute arbitrary Javascript in a target user’s Origin c…
|
CWE-79
Cross-site Scripting
|
CVE-2020-15914
|
2024-11-21 14:06 |
2020-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209177
|
3.3 |
LOW
Local
|
aptdaemon_project
|
aptdaemon
|
There is no input validation on the Locale property in an apt transaction. An unprivileged user can supply a full path to a writable directory, which lets aptd read a file as root. Having a symlink i…
|
CWE-22
Path Traversal
|
CVE-2020-15703
|
2024-11-21 14:06 |
2020-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209178
|
6.1 |
MEDIUM
Network
|
thembay
|
greenmart
|
The search functionality of the Greenmart theme 2.4.2 for WordPress is vulnerable to XSS.
|
CWE-79
Cross-site Scripting
|
CVE-2020-16140
|
2024-11-21 14:06 |
2020-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209179
|
7.5 |
HIGH
Network
|
arista
|
eos
|
Arista EOS before 4.21.12M, 4.22.x before 4.22.7M, 4.23.x before 4.23.5M, and 4.24.x before 4.24.2F allows remote attackers to cause traffic loss or incorrect forwarding of traffic via a malformed li…
|
NVD-CWE-noinfo
|
CVE-2020-15897
|
2024-11-21 14:06 |
2020-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209180
|
9.8 |
CRITICAL
Network
|
mozilla
|
firefox
|
Mozilla developers reported memory safety bugs present in Firefox 81. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been expl…
|
CWE-416
Use After Free
|
CVE-2020-15684
|
2024-11-21 14:06 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
