CVSS: 5.0EPSS: 0%CPEs: 6EXPL: 0CVE-2023-5851 – Gentoo Linux Security Advisory 202311-11
https://notcve.org/view.php?id=CVE-2023-5851
01 Nov 2023 — Inappropriate implementation in Downloads in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to obfuscate security UI via a crafted HTML page. (Chromium security severity: Medium) La implementación inadecuada en Descargas en Google Chrome anterior a 119.0.6045.105 permitió a un atacante remoto ofuscar la interfaz de usuario de seguridad a través de una página HTML manipulada. (Severidad de seguridad de Chromium: media) Multiple vulnerabilities have been discovered in Chromium and its derivat... • https://chromereleases.googleblog.com/2023/10/stable-channel-update-for-desktop_31.html • CWE-346: Origin Validation Error •
CVSS: 5.0EPSS: 0%CPEs: 6EXPL: 0CVE-2023-5850 – Gentoo Linux Security Advisory 202311-11
https://notcve.org/view.php?id=CVE-2023-5850
01 Nov 2023 — Incorrect security UI in Downloads in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to perform domain spoofing via a crafted domain name. (Chromium security severity: Medium) La interfaz de usuario de seguridad incorrecta en Descargas en Google Chrome anterior a 119.0.6045.105 permitió a un atacante remoto realizar una suplantación de dominio a través de un nombre de dominio manipulado. (Severidad de seguridad de Chromium: media) Multiple vulnerabilities have been discovered in Chromium an... • https://chromereleases.googleblog.com/2023/10/stable-channel-update-for-desktop_31.html •
CVSS: 10.0EPSS: 0%CPEs: 6EXPL: 0CVE-2023-5849 – Gentoo Linux Security Advisory 202311-11
https://notcve.org/view.php?id=CVE-2023-5849
01 Nov 2023 — Integer overflow in USB in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) El desbordamiento de enteros en USB en Google Chrome anterior a 119.0.6045.105 permitía a un atacante remoto explotar potencialmente la corrupción del montón a través de una página HTML manipulada. (Severidad de seguridad de Chrome: alta) Multiple vulnerabilities have been discovered in Chromium and its derivatives, the ... • https://chromereleases.googleblog.com/2023/10/stable-channel-update-for-desktop_31.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 10.0EPSS: 0%CPEs: 6EXPL: 0CVE-2023-5482 – Gentoo Linux Security Advisory 202311-11
https://notcve.org/view.php?id=CVE-2023-5482
01 Nov 2023 — Insufficient data validation in USB in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High) La validación de datos insuficiente en USB en Google Chrome anterior a 119.0.6045.105 permitió a un atacante remoto realizar acceso a la memoria fuera de los límites a través de una página HTML manipulada. (Severidad de seguridad de Chrome: alta) Multiple vulnerabilities have been discovered in Chromium and i... • https://chromereleases.googleblog.com/2023/10/stable-channel-update-for-desktop_31.html • CWE-345: Insufficient Verification of Data Authenticity •
CVSS: 6.4EPSS: 0%CPEs: 6EXPL: 0CVE-2023-5480 – Gentoo Linux Security Advisory 202311-11
https://notcve.org/view.php?id=CVE-2023-5480
01 Nov 2023 — Inappropriate implementation in Payments in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to bypass XSS preventions via a malicious file. (Chromium security severity: High) La implementación inadecuada en Pagos en Google Chrome anterior a 119.0.6045.105 permitió a un atacante remoto evitar las prevenciones XSS a través de un archivo malicioso. (Severidad de seguridad de Chrome: alta) Multiple vulnerabilities have been discovered in Chromium and its derivatives, the worst of which can lead ... • https://chromereleases.googleblog.com/2023/10/stable-channel-update-for-desktop_31.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 0CVE-2023-5472 – Debian Security Advisory 5536-1
https://notcve.org/view.php?id=CVE-2023-5472
25 Oct 2023 — Use after free in Profiles in Google Chrome prior to 118.0.5993.117 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Use after free en perfiles de Google Chrome anteriores a 118.0.5993.117 permitía a un atacante remoto explotar potencialmente la corrupción del montón a través de una página HTML manipulada. (Severidad de seguridad de Chrome: Alta) Multiple vulnerabilities have been discovered in Chromium and its derivatives, the wors... • https://chromereleases.googleblog.com/2023/10/stable-channel-update-for-desktop_24.html • CWE-416: Use After Free •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2023-5473 – Gentoo Linux Security Advisory 202311-11
https://notcve.org/view.php?id=CVE-2023-5473
11 Oct 2023 — Use after free in Cast in Google Chrome prior to 118.0.5993.70 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Low) El use after free en Cast en Google Chrome anterior a 118.0.5993.70 permitía a un atacante remoto que había comprometido el proceso de renderizado explotar potencialmente la corrupción del montón a través de una página HTML manipulada. (Severidad de seguridad de Chrome: Baja) Multipl... • https://chromereleases.googleblog.com/2023/10/stable-channel-update-for-desktop_10.html • CWE-416: Use After Free •
CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 0CVE-2023-5486 – Gentoo Linux Security Advisory 202311-11
https://notcve.org/view.php?id=CVE-2023-5486
11 Oct 2023 — Inappropriate implementation in Input in Google Chrome prior to 118.0.5993.70 allowed a remote attacker to spoof security UI via a crafted HTML page. (Chromium security severity: Low) La implementación inadecuada de Input en Google Chrome anterior a 118.0.5993.70 permitió a un atacante remoto falsificar la interfaz de usuario de seguridad a través de una página HTML manipulada. (Severidad de seguridad de Chrome: Baja) Multiple vulnerabilities have been discovered in Chromium and its derivatives, the worst o... • https://chromereleases.googleblog.com/2023/10/stable-channel-update-for-desktop_10.html •
CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 0CVE-2023-5477 – Gentoo Linux Security Advisory 202311-11
https://notcve.org/view.php?id=CVE-2023-5477
11 Oct 2023 — Inappropriate implementation in Installer in Google Chrome prior to 118.0.5993.70 allowed a local attacker to bypass discretionary access control via a crafted command. (Chromium security severity: Low) La implementación inadecuada en el instalador de Google Chrome anterior a 118.0.5993.70 permitió a un atacante local eludir el control de acceso discrecional mediante un comando manipulado. (Severidad de seguridad de Chrome: Baja) Multiple vulnerabilities have been discovered in Chromium and its derivatives,... • https://chromereleases.googleblog.com/2023/10/stable-channel-update-for-desktop_10.html •
CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 0CVE-2023-5478 – Gentoo Linux Security Advisory 202311-11
https://notcve.org/view.php?id=CVE-2023-5478
11 Oct 2023 — Inappropriate implementation in Autofill in Google Chrome prior to 118.0.5993.70 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low) La implementación inadecuada de Autocompletar en Google Chrome anterior a 118.0.5993.70 permitió a un atacante remoto filtrar datos de orígenes cruzados a través de una página HTML manipulada. (Severidad de seguridad de Chrome: Baja) Multiple vulnerabilities have been discovered in Chromium and its derivatives, the wor... • https://chromereleases.googleblog.com/2023/10/stable-channel-update-for-desktop_10.html •