Fedoraproject

Fedora

5335 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2020-6486

  • EPSS 0.97%
  • Veröffentlicht 21.05.2020 04:15:13
  • Zuletzt bearbeitet 21.11.2024 05:35:49

Insufficient policy enforcement in navigations in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.

9.6

CVE-2020-6471

Exploit
  • EPSS 0.86%
  • Veröffentlicht 21.05.2020 04:15:12
  • Zuletzt bearbeitet 21.11.2024 05:35:47

Insufficient policy enforcement in developer tools in Google Chrome prior to 83.0.4103.61 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension.

6.5

CVE-2020-6472

Exploit
  • EPSS 0.89%
  • Veröffentlicht 21.05.2020 04:15:12
  • Zuletzt bearbeitet 21.11.2024 05:35:47

Insufficient policy enforcement in developer tools in Google Chrome prior to 83.0.4103.61 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from process memory or disk via a crafted ...

6.5

CVE-2020-6473

Exploit
  • EPSS 1.45%
  • Veröffentlicht 21.05.2020 04:15:12
  • Zuletzt bearbeitet 21.11.2024 05:35:47

Insufficient policy enforcement in Blink in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.

8.8

CVE-2020-6474

Exploit
  • EPSS 2.07%
  • Veröffentlicht 21.05.2020 04:15:12
  • Zuletzt bearbeitet 21.11.2024 05:35:47

Use after free in Blink in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

6.5

CVE-2020-6475

Exploit
  • EPSS 1.41%
  • Veröffentlicht 21.05.2020 04:15:12
  • Zuletzt bearbeitet 21.11.2024 05:35:48

Incorrect implementation in full screen in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to spoof security UI via a crafted HTML page.

6.5

CVE-2020-6476

Exploit
  • EPSS 0.58%
  • Veröffentlicht 21.05.2020 04:15:12
  • Zuletzt bearbeitet 21.11.2024 05:35:48

Insufficient policy enforcement in tab strip in Google Chrome prior to 83.0.4103.61 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension.

7.8

CVE-2020-6477

  • EPSS 0.03%
  • Veröffentlicht 21.05.2020 04:15:12
  • Zuletzt bearbeitet 21.11.2024 05:35:48

Inappropriate implementation in installer in Google Chrome on OS X prior to 83.0.4103.61 allowed a local attacker to perform privilege escalation via a crafted file.

6.5

CVE-2020-6478

  • EPSS 0.91%
  • Veröffentlicht 21.05.2020 04:15:12
  • Zuletzt bearbeitet 21.11.2024 05:35:48

Inappropriate implementation in full screen in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to spoof security UI via a crafted HTML page.

8.8

CVE-2020-6463

  • EPSS 3.75%
  • Veröffentlicht 21.05.2020 04:15:11
  • Zuletzt bearbeitet 21.11.2024 05:35:46

Use after free in ANGLE in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.