CVE-2020-6425
- EPSS 0.46%
- Veröffentlicht 23.03.2020 16:15:17
- Zuletzt bearbeitet 21.11.2024 05:35:42
Insufficient policy enforcement in extensions in Google Chrome prior to 80.0.3987.149 allowed an attacker who convinced a user to install a malicious extension to bypass site isolation via a crafted Chrome Extension.
CVE-2020-6426
- EPSS 1.45%
- Veröffentlicht 23.03.2020 16:15:17
- Zuletzt bearbeitet 21.11.2024 05:35:42
Inappropriate implementation in V8 in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2020-6427
- EPSS 4.75%
- Veröffentlicht 23.03.2020 16:15:17
- Zuletzt bearbeitet 21.11.2024 05:35:42
Use after free in audio in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2020-6428
- EPSS 4.75%
- Veröffentlicht 23.03.2020 16:15:17
- Zuletzt bearbeitet 21.11.2024 05:35:42
Use after free in audio in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2020-6429
- EPSS 4.75%
- Veröffentlicht 23.03.2020 16:15:17
- Zuletzt bearbeitet 21.11.2024 05:35:42
Use after free in audio in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2020-6449
- EPSS 1.45%
- Veröffentlicht 23.03.2020 16:15:17
- Zuletzt bearbeitet 21.11.2024 05:35:45
Use after free in audio in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2020-9760
- EPSS 1.05%
- Veröffentlicht 23.03.2020 16:15:17
- Zuletzt bearbeitet 21.11.2024 05:41:14
An issue was discovered in WeeChat before 2.7.1 (0.3.4 to 2.7 are affected). When a new IRC message 005 is received with longer nick prefixes, a buffer overflow and possibly a crash can happen when a new mode is set for a nick.
CVE-2020-1950
- EPSS 0.41%
- Veröffentlicht 23.03.2020 14:15:13
- Zuletzt bearbeitet 21.11.2024 05:11:43
A carefully crafted or corrupt PSD file can cause excessive memory usage in Apache Tika's PSDParser in versions 1.0-1.23.
CVE-2020-1951
- EPSS 0.21%
- Veröffentlicht 23.03.2020 14:15:13
- Zuletzt bearbeitet 21.11.2024 05:11:43
A carefully crafted or corrupt PSD file can cause an infinite loop in Apache Tika's PSDParser in versions 1.0-1.23.
- EPSS 1.62%
- Veröffentlicht 22.03.2020 05:15:11
- Zuletzt bearbeitet 21.11.2024 04:56:06
In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability has been discovered where certain parameters are not properly escaped when generating certain queries for search actions in libraries/classes/Controllers/Table/TableSe...