|
196391
|
6.5 |
MEDIUM
Network
|
google
debian
|
chrome
debian_linux
|
Insufficient policy enforcement in Omnibox in Google Chrome on iOS prior to 83.0.4103.88 allowed a remote attacker to perform domain spoofing via a crafted URI.
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-6497
|
2024-11-21 14:35 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196392
|
8.8 |
HIGH
Network
|
google
debian
opensuse
|
chrome
debian_linux
leap
backports_sle
|
Use after free in payments in Google Chrome on MacOS prior to 83.0.4103.97 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.
|
CWE-416
Use After Free
|
CVE-2020-6496
|
2024-11-21 14:35 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196393
|
6.5 |
MEDIUM
Network
|
google
debian
opensuse
|
chrome
debian_linux
leap
backports
|
Insufficient policy enforcement in developer tools in Google Chrome prior to 83.0.4103.97 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox es…
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-6495
|
2024-11-21 14:35 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196394
|
6.5 |
MEDIUM
Network
|
google
debian
opensuse
|
chrome
debian_linux
leap
backports_sle
|
Incorrect security UI in payments in Google Chrome on Android prior to 83.0.4103.97 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
|
NVD-CWE-noinfo
|
CVE-2020-6494
|
2024-11-21 14:35 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196395
|
9.6 |
CRITICAL
Network
|
google
debian
opensuse
|
chrome
debian_linux
leap
backports
|
Use after free in WebAuthentication in Google Chrome prior to 83.0.4103.97 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTM…
|
CWE-416
Use After Free
|
CVE-2020-6493
|
2024-11-21 14:35 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196396
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Inappropriate implementation in V8 in Google Chrome prior to 80.0.3987.162 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-787
Out-of-bounds Write
|
CVE-2020-6453
|
2024-11-21 14:35 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196397
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Out of bounds write in V8 in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-787
Out-of-bounds Write
|
CVE-2020-6419
|
2024-11-21 14:35 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196398
|
9.1 |
CRITICAL
Network
|
epson
|
eb-1470ui_firmware
|
An exploitable authentication bypass vulnerability exists in the ESPON Web Control functionality of Epson EB-1470Ui MAIN: 98009273ESWWV107 MAIN2: 8X7325WWV303. A specially crafted series of HTTP requ…
|
CWE-287
Improper Authentication
|
CVE-2020-6091
|
2024-11-21 14:35 |
2020-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196399
|
6.5 |
MEDIUM
Network
|
google
debian
opensuse
fedoraproject
|
chrome
debian_linux
leap
fedora
backports_sle
|
Insufficient data validation in site information in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to spoof security UI via a crafted domain name.
|
NVD-CWE-noinfo
|
CVE-2020-6491
|
2024-11-21 14:35 |
2020-05-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196400
|
4.3 |
MEDIUM
Network
|
google
debian
opensuse
fedoraproject
|
chrome
debian_linux
leap
fedora
backports_sle
|
Insufficient data validation in loader in Google Chrome prior to 83.0.4103.61 allowed a remote attacker who had been able to write to disk to leak cross-origin data via a crafted HTML page.
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2020-6490
|
2024-11-21 14:35 |
2020-05-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
