|
209631
|
4.3 |
MEDIUM
Network
|
google
|
chrome
|
Insufficient data validation in sharing in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
|
CWE-1021
Improper Restriction of Rendered UI Layers or Frames
|
CVE-2020-16032
|
2024-11-21 14:06 |
2021-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209632
|
4.3 |
MEDIUM
Network
|
google
|
chrome
|
Insufficient data validation in UI in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
|
CWE-1021
Improper Restriction of Rendered UI Layers or Frames
|
CVE-2020-16031
|
2024-11-21 14:06 |
2021-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209633
|
6.1 |
MEDIUM
Network
|
google
|
chrome
|
Insufficient data validation in Blink in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page.
|
CWE-79
Cross-site Scripting
|
CVE-2020-16030
|
2024-11-21 14:06 |
2021-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209634
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Inappropriate implementation in PDFium in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to bypass navigation restrictions via a crafted PDF file.
|
CWE-862
Missing Authorization
|
CVE-2020-16029
|
2024-11-21 14:06 |
2021-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209635
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Heap buffer overflow in WebRTC in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-787
Out-of-bounds Write
|
CVE-2020-16028
|
2024-11-21 14:06 |
2021-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209636
|
6.5 |
MEDIUM
Network
|
google
|
chrome
|
Insufficient policy enforcement in developer tools in Google Chrome prior to 87.0.4280.66 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive inf…
|
CWE-862
Missing Authorization
|
CVE-2020-16027
|
2024-11-21 14:06 |
2021-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209637
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Use after free in WebRTC in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-787
CWE-416
Out-of-bounds Write
Use After Free
|
CVE-2020-16026
|
2024-11-21 14:06 |
2021-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209638
|
9.6 |
CRITICAL
Network
|
google
|
chrome
|
Heap buffer overflow in clipboard in Google Chrome prior to 87.0.4280.66 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML …
|
CWE-787
Out-of-bounds Write
|
CVE-2020-16025
|
2024-11-21 14:06 |
2021-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209639
|
9.6 |
CRITICAL
Network
|
google
|
chrome
|
Heap buffer overflow in UI in Google Chrome prior to 87.0.4280.66 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
|
CWE-787
Out-of-bounds Write
|
CVE-2020-16024
|
2024-11-21 14:06 |
2021-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209640
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Use after free in WebCodecs in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-787
CWE-416
Out-of-bounds Write
Use After Free
|
CVE-2020-16023
|
2024-11-21 14:06 |
2021-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
