CVE-2020-15986
- EPSS 1.32%
- Veröffentlicht 03.11.2020 03:15:13
- Zuletzt bearbeitet 21.11.2024 05:06:36
Integer overflow in media in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2020-15967
- EPSS 1.37%
- Veröffentlicht 03.11.2020 03:15:12
- Zuletzt bearbeitet 21.11.2024 05:06:33
Use after free in payments in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.
CVE-2020-15968
- EPSS 1.52%
- Veröffentlicht 03.11.2020 03:15:12
- Zuletzt bearbeitet 21.11.2024 05:06:34
Use after free in Blink in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2020-15969
- EPSS 1.71%
- Veröffentlicht 03.11.2020 03:15:12
- Zuletzt bearbeitet 21.11.2024 05:06:34
Use after free in WebRTC in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2020-15970
- EPSS 1.37%
- Veröffentlicht 03.11.2020 03:15:12
- Zuletzt bearbeitet 21.11.2024 05:06:34
Use after free in NFC in Google Chrome prior to 86.0.4240.75 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
CVE-2020-15971
- EPSS 1.37%
- Veröffentlicht 03.11.2020 03:15:12
- Zuletzt bearbeitet 21.11.2024 05:06:34
Use after free in printing in Google Chrome prior to 86.0.4240.75 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
CVE-2020-28038
- EPSS 2.61%
- Veröffentlicht 02.11.2020 21:15:31
- Zuletzt bearbeitet 21.11.2024 05:22:15
WordPress before 5.5.2 allows stored XSS via post slugs.
CVE-2020-28039
- EPSS 4.06%
- Veröffentlicht 02.11.2020 21:15:31
- Zuletzt bearbeitet 21.11.2024 05:22:15
is_protected_meta in wp-includes/meta.php in WordPress before 5.5.2 allows arbitrary file deletion because it does not properly determine whether a meta key is considered protected.
CVE-2020-28040
- EPSS 1.07%
- Veröffentlicht 02.11.2020 21:15:31
- Zuletzt bearbeitet 21.11.2024 05:22:15
WordPress before 5.5.2 allows CSRF attacks that change a theme's background image.
CVE-2020-28030
- EPSS 2.04%
- Veröffentlicht 02.11.2020 21:15:30
- Zuletzt bearbeitet 21.11.2024 05:22:14
In Wireshark 3.2.0 to 3.2.7, the GQUIC dissector could crash. This was addressed in epan/dissectors/packet-gquic.c by correcting the implementation of offset advancement.