|
209601
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Use after free in Mojo in Google Chrome prior to 86.0.4240.99 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
|
CWE-416
Use After Free
|
CVE-2020-15997
|
2024-11-21 14:06 |
2020-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209602
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Use after free in passwords in Google Chrome prior to 86.0.4240.99 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
|
CWE-416
Use After Free
|
CVE-2020-15996
|
2024-11-21 14:06 |
2020-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209603
|
8.8 |
HIGH
Network
|
google
debian
fedoraproject
|
chrome
debian_linux
fedora
|
Out of bounds write in V8 in Google Chrome prior to 86.0.4240.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-787
Out-of-bounds Write
|
CVE-2020-15995
|
2024-11-21 14:06 |
2020-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209604
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Use after free in V8 in Google Chrome prior to 86.0.4240.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-416
Use After Free
|
CVE-2020-15994
|
2024-11-21 14:06 |
2020-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209605
|
9.8 |
CRITICAL
Network
|
google
|
chrome
|
Use after free in printing in Google Chrome prior to 86.0.4240.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-416
Use After Free
|
CVE-2020-15993
|
2024-11-21 14:06 |
2020-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209606
|
8.8 |
HIGH
Network
|
google
debian
opensuse
fedoraproject
|
chrome
debian_linux
backports_sle
fedora
|
Insufficient policy enforcement in networking in Google Chrome prior to 86.0.4240.75 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML…
|
NVD-CWE-noinfo
|
CVE-2020-15992
|
2024-11-21 14:06 |
2020-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209607
|
8.8 |
HIGH
Network
|
google
opensuse
fedoraproject
debian
|
chrome
backports_sle
fedora
debian_linux
|
Use after free in password manager in Google Chrome prior to 86.0.4240.75 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML…
|
CWE-416
Use After Free
|
CVE-2020-15991
|
2024-11-21 14:06 |
2020-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209608
|
8.8 |
HIGH
Network
|
google
debian
fedoraproject
opensuse
|
chrome
debian_linux
fedora
backports_sle
|
Use after free in autofill in Google Chrome prior to 86.0.4240.75 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
|
CWE-416
Use After Free
|
CVE-2020-15990
|
2024-11-21 14:06 |
2020-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209609
|
5.5 |
MEDIUM
Local
|
google
fedoraproject
opensuse
debian
|
chrome
fedora
backports_sle
debian_linux
|
Uninitialized data in PDFium in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted PDF file.
|
CWE-908
Use of Uninitialized Resource
|
CVE-2020-15989
|
2024-11-21 14:06 |
2020-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209610
|
6.3 |
MEDIUM
Network
|
google
fedoraproject
debian
opensuse
|
chrome
fedora
debian_linux
backports_sle
|
Insufficient policy enforcement in downloads in Google Chrome on Windows prior to 86.0.4240.75 allowed a remote attacker who convinced the user to open files to execute arbitrary code via a crafted H…
|
NVD-CWE-noinfo
|
CVE-2020-15988
|
2024-11-21 14:06 |
2020-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
