CVE-2020-15991
- EPSS 1.43%
- Veröffentlicht 03.11.2020 03:15:14
- Zuletzt bearbeitet 21.11.2024 05:06:37
Use after free in password manager in Google Chrome prior to 86.0.4240.75 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
CVE-2020-15992
- EPSS 0.91%
- Veröffentlicht 03.11.2020 03:15:14
- Zuletzt bearbeitet 21.11.2024 05:06:37
Insufficient policy enforcement in networking in Google Chrome prior to 86.0.4240.75 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page.
CVE-2020-15995
- EPSS 1.31%
- Veröffentlicht 03.11.2020 03:15:14
- Zuletzt bearbeitet 21.11.2024 05:06:38
Out of bounds write in V8 in Google Chrome prior to 86.0.4240.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2020-15999
- EPSS 92.97%
- Veröffentlicht 03.11.2020 03:15:14
- Zuletzt bearbeitet 05.02.2025 14:37:57
Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2020-16000
- EPSS 1.75%
- Veröffentlicht 03.11.2020 03:15:14
- Zuletzt bearbeitet 21.11.2024 05:06:38
Inappropriate implementation in Blink in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2020-16001
- EPSS 1.91%
- Veröffentlicht 03.11.2020 03:15:14
- Zuletzt bearbeitet 21.11.2024 05:06:38
Use after free in media in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2020-15972
- EPSS 3.5%
- Veröffentlicht 03.11.2020 03:15:13
- Zuletzt bearbeitet 21.11.2024 05:06:34
Use after free in audio in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2020-15973
- EPSS 0.82%
- Veröffentlicht 03.11.2020 03:15:13
- Zuletzt bearbeitet 21.11.2024 05:06:34
Insufficient policy enforcement in extensions in Google Chrome prior to 86.0.4240.75 allowed an attacker who convinced a user to install a malicious extension to bypass same origin policy via a crafted Chrome Extension.
CVE-2020-15974
- EPSS 0.91%
- Veröffentlicht 03.11.2020 03:15:13
- Zuletzt bearbeitet 21.11.2024 05:06:35
Integer overflow in Blink in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to bypass site isolation via a crafted HTML page.
CVE-2020-15975
- EPSS 1.43%
- Veröffentlicht 03.11.2020 03:15:13
- Zuletzt bearbeitet 21.11.2024 05:06:35
Integer overflow in SwiftShader in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.