CVE-2019-5825
- EPSS 55.93%
- Veröffentlicht 25.11.2019 20:15:11
- Zuletzt bearbeitet 24.10.2025 20:57:31
Out of bounds write in JavaScript in Google Chrome prior to 73.0.3683.86 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2019-5826
- EPSS 1.04%
- Veröffentlicht 25.11.2019 20:15:11
- Zuletzt bearbeitet 21.11.2024 04:45:35
Use after free in IndexedDB in Google Chrome prior to 73.0.3683.86 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.
CVE-2019-15684
- EPSS 0.38%
- Veröffentlicht 25.11.2019 16:15:13
- Zuletzt bearbeitet 21.11.2024 04:29:15
Kaspersky Protection extension for web browser Google Chrome prior to 30.112.62.0 was vulnerable to unauthorized access to its features remotely that could lead to removing other installed extensions.
CVE-2019-5871
- EPSS 0.84%
- Veröffentlicht 25.11.2019 15:15:37
- Zuletzt bearbeitet 21.11.2024 04:45:40
Heap buffer overflow in Skia in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2019-5872
- EPSS 0.67%
- Veröffentlicht 25.11.2019 15:15:37
- Zuletzt bearbeitet 21.11.2024 04:45:40
Use after free in Mojo in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2019-5873
- EPSS 0.69%
- Veröffentlicht 25.11.2019 15:15:37
- Zuletzt bearbeitet 21.11.2024 04:45:40
Insufficient policy validation in navigation in Google Chrome on iOS prior to 77.0.3865.75 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
CVE-2019-5874
- EPSS 0.91%
- Veröffentlicht 25.11.2019 15:15:37
- Zuletzt bearbeitet 21.11.2024 04:45:41
Insufficient filtering in URI schemes in Google Chrome on Windows prior to 77.0.3865.75 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.
CVE-2019-5875
- EPSS 0.62%
- Veröffentlicht 25.11.2019 15:15:37
- Zuletzt bearbeitet 21.11.2024 04:45:41
Insufficient data validation in downloads in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
CVE-2019-5876
- EPSS 0.91%
- Veröffentlicht 25.11.2019 15:15:37
- Zuletzt bearbeitet 21.11.2024 04:45:41
Use after free in media in Google Chrome on Android prior to 77.0.3865.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2019-5877
- EPSS 1.01%
- Veröffentlicht 25.11.2019 15:15:37
- Zuletzt bearbeitet 21.11.2024 04:45:41
Out of bounds memory access in JavaScript in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.