|
221951
|
5.5 |
MEDIUM
Local
|
google
|
chrome
|
Use after free in PDFium in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.
|
CWE-787
CWE-416
Out-of-bounds Write
Use After Free
|
CVE-2019-5860
|
2024-11-21 13:45 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221952
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Insufficient filtering in URI schemes in Google Chrome on Windows prior to 76.0.3809.87 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.
|
NVD-CWE-noinfo
|
CVE-2019-5859
|
2024-11-21 13:45 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221953
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Incorrect security UI in MacOS services integration in Google Chrome on OS X prior to 76.0.3809.87 allowed a local attacker to execute arbitrary code via a crafted HTML page.
|
CWE-20
Improper Input Validation
|
CVE-2019-5858
|
2024-11-21 13:45 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221954
|
6.5 |
MEDIUM
Network
|
google
|
chrome
|
Inappropriate implementation in JavaScript in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-5857
|
2024-11-21 13:45 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221955
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Insufficient policy enforcement in storage in Google Chrome prior to 76.0.3809.87 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page.
|
CWE-20
Improper Input Validation
|
CVE-2019-5856
|
2024-11-21 13:45 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221956
|
6.5 |
MEDIUM
Network
|
google
|
chrome
|
Integer overflow in PDFium in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.
|
CWE-787
CWE-190
Out-of-bounds Write
Integer Overflow or Wraparound
|
CVE-2019-5855
|
2024-11-21 13:45 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221957
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Integer overflow in PDFium in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.
|
CWE-787
CWE-190
Out-of-bounds Write
Integer Overflow or Wraparound
|
CVE-2019-5854
|
2024-11-21 13:45 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221958
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Inappropriate implementation in JavaScript in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-682
Incorrect Calculation
|
CVE-2019-5853
|
2024-11-21 13:45 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221959
|
6.5 |
MEDIUM
Network
|
google
|
chrome
|
Inappropriate implementation in JavaScript in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.
|
CWE-20
Improper Input Validation
|
CVE-2019-5852
|
2024-11-21 13:45 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221960
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Use after free in WebAudio in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-787
CWE-416
Out-of-bounds Write
Use After Free
|
CVE-2019-5851
|
2024-11-21 13:45 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
