CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2020-6547 – chromium-browser: Incorrect security UI in media
https://notcve.org/view.php?id=CVE-2020-6547
12 Aug 2020 — Incorrect security UI in media in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to potentially obtain sensitive information via a crafted HTML page. La Interfaz de Usuario de seguridad incorrecta en media en Google Chrome versiones anteriores a 84.0.4147.125, permitía a un atacante remoto obtener potencialmente información confidencial por medio de una página HTML diseñada Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 84.0.4147.135. Issu... • https://chromereleases.googleblog.com/2020/08/stable-channel-update-for-desktop.html • CWE-1021: Improper Restriction of Rendered UI Layers or Frames •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2020-6542 – chromium-browser: Use after free in ANGLE
https://notcve.org/view.php?id=CVE-2020-6542
12 Aug 2020 — Use after free in ANGLE in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en ANGLE en Google Chrome versiones anteriores a 84.0.4147.125, permitía a un atacante remoto explotar una corrupción de la pila por medio de una página HTML diseñada Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 84.0.4147.135. Issues addressed include buffer ov... • https://chromereleases.googleblog.com/2020/08/stable-channel-update-for-desktop.html • CWE-416: Use After Free CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2020-6545 – chromium-browser: Use after free in audio
https://notcve.org/view.php?id=CVE-2020-6545
12 Aug 2020 — Use after free in audio in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en audio en Google Chrome versiones anteriores a 84.0.4147.125, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 84.0.4147.135. Issues addressed in... • https://chromereleases.googleblog.com/2020/08/stable-channel-update-for-desktop.html • CWE-416: Use After Free CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 11%CPEs: 3EXPL: 1CVE-2020-6551 – chromium-browser: Use after free in WebXR
https://notcve.org/view.php?id=CVE-2020-6551
12 Aug 2020 — Use after free in WebXR in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en WebXR en Google Chrome versiones anteriores a 84.0.4147.125, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 84.0.4147.135. Issues addressed in... • https://packetstorm.news/files/id/159611 • CWE-416: Use After Free CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2020-6540 – chromium-browser: Heap buffer overflow in Skia
https://notcve.org/view.php?id=CVE-2020-6540
29 Jul 2020 — Buffer overflow in Skia in Google Chrome prior to 84.0.4147.105 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un desbordamiento del búfer en Skia en Google Chrome versiones anteriores a 84.0.4147.105, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 84.0.4147.105. Issues addressed include buffer ov... • https://chromereleases.googleblog.com/2020/07/stable-channel-update-for-desktop_27.html • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2020-6537 – chromium-browser: Type Confusion in V8
https://notcve.org/view.php?id=CVE-2020-6537
29 Jul 2020 — Type confusion in V8 in Google Chrome prior to 84.0.4147.105 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Una confusión de tipo en V8 en Google Chrome versiones anteriores a 84.0.4147.105, permitía a un atacante remoto ejecutar código arbitrario dentro de un sandbox por medio de una página HTML diseñada Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 84.0.4147.105. Issues addressed include buffer overflow, b... • https://chromereleases.googleblog.com/2020/07/stable-channel-update-for-desktop_27.html • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2020-6538 – chromium-browser: Inappropriate implementation in WebView
https://notcve.org/view.php?id=CVE-2020-6538
29 Jul 2020 — Inappropriate implementation in WebView in Google Chrome on Android prior to 84.0.4147.105 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Una implementación inapropiada en WebView en Google Chrome en Android versiones anteriores a 84.0.4147.105, permitía a un atacante remoto filtrar datos de origen cruzado por medio de una página HTML diseñada Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 84.0.4147.105. Issues addressed incl... • https://chromereleases.googleblog.com/2020/07/stable-channel-update-for-desktop_27.html • CWE-358: Improperly Implemented Security Check for Standard •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2020-6532 – chromium-browser: Use after free in SCTP
https://notcve.org/view.php?id=CVE-2020-6532
29 Jul 2020 — Use after free in SCTP in Google Chrome prior to 84.0.4147.105 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en SCTP en Google Chrome versiones anteriores a 84.0.4147.105, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 84.0.4147.105. Issues addressed incl... • https://chromereleases.googleblog.com/2020/07/stable-channel-update-for-desktop_27.html • CWE-416: Use After Free CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2020-6539 – chromium-browser: Use after free in CSS
https://notcve.org/view.php?id=CVE-2020-6539
29 Jul 2020 — Use after free in CSS in Google Chrome prior to 84.0.4147.105 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en CSS en Google Chrome versiones anteriores a 84.0.4147.105, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 84.0.4147.105. Issues addressed includ... • https://chromereleases.googleblog.com/2020/07/stable-channel-update-for-desktop_27.html • CWE-416: Use After Free CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 5%CPEs: 3EXPL: 1CVE-2020-6541 – chromium-browser: Use after free in WebUSB
https://notcve.org/view.php?id=CVE-2020-6541
29 Jul 2020 — Use after free in WebUSB in Google Chrome prior to 84.0.4147.105 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en WebUSB en Google Chrome versiones anteriores a 84.0.4147.105, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 84.0.4147.105. Issues addressed ... • https://packetstorm.news/files/id/159610 • CWE-416: Use After Free CWE-787: Out-of-bounds Write •