Redhat

Enterprise Linux Server

1890 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2017-5108

  • EPSS 0.84%
  • Published 27.10.2017 05:29:02
  • Last modified 20.04.2025 01:37:25

Type confusion in PDFium in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to potentially maliciously modify objects via a crafted PDF file.

4.3

CVE-2017-5109

  • EPSS 1.16%
  • Published 27.10.2017 05:29:02
  • Last modified 20.04.2025 01:37:25

Inappropriate implementation of unload handler handling in permission prompts in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to display UI on a non attacker controlled tab via a crafted HTML page.

6.5

CVE-2017-5110

  • EPSS 1.07%
  • Published 27.10.2017 05:29:02
  • Last modified 20.04.2025 01:37:25

Inappropriate implementation of the web payments API on blob: and data: schemes in Web Payments in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to spoof the contents of the Omnibox via a crafted H...

8.8

CVE-2017-5111

  • EPSS 1.48%
  • Published 27.10.2017 05:29:02
  • Last modified 20.04.2025 01:37:25

A use after free in PDFium in Google Chrome prior to 61.0.3163.79 for Linux, Windows, and Mac allowed a remote attacker to potentially exploit memory corruption via a crafted PDF file.

8.8

CVE-2017-5113

  • EPSS 1.27%
  • Published 27.10.2017 05:29:02
  • Last modified 20.04.2025 01:37:25

Math overflow in Skia in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

8.8

CVE-2017-5114

  • EPSS 1.48%
  • Published 27.10.2017 05:29:02
  • Last modified 20.04.2025 01:37:25

Inappropriate use of partition alloc in PDFium in Google Chrome prior to 61.0.3163.79 for Linux, Windows, and Mac, and 61.0.3163.81 for Android, allowed a remote attacker to potentially exploit memory corruption via a crafted PDF file.

8.8

CVE-2017-5116

  • EPSS 55.77%
  • Published 27.10.2017 05:29:02
  • Last modified 20.04.2025 01:37:25

Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

4.3

CVE-2017-5118

  • EPSS 0.61%
  • Published 27.10.2017 05:29:02
  • Last modified 20.04.2025 01:37:25

Blink in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, failed to correctly propagate CSP restrictions to javascript scheme pages, which allowed a remote attacker to bypass content security policy via a...

6.5

CVE-2017-5120

  • EPSS 0.87%
  • Published 27.10.2017 05:29:02
  • Last modified 20.04.2025 01:37:25

Inappropriate use of www mismatch redirects in browser navigation in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to potentially downgrade HTTPS requests to HTTP via a crafte...

8.8

CVE-2017-5121

  • EPSS 3.64%
  • Published 27.10.2017 05:29:02
  • Last modified 20.04.2025 01:37:25

Inappropriate use of JIT optimisation in V8 in Google Chrome prior to 61.0.3163.100 for Linux, Windows, and Mac allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page, related to the escape analysis phase.