NotCVE - vendor:"Google" product:"Chrome" version:" <= 27.0.1453.109"

Page 140 of 3358 results (0.018 seconds)

CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0

CVE-2019-13715 – chromium-browser: Address bar spoofing

https://notcve.org/view.php?id=CVE-2019-13715

07 Nov 2019 — Insufficient validation of untrusted input in Omnibox in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name. La comprobación insuficiente de una entrada no confiable en Omnibox en Google Chrome versiones anteriores a 78.0.3904.70, permitió a un atacante remoto realizar una suplantación de dominios mediante homógrafos IDN por medio de un nombre de dominio diseñado. Chromium is an open-source web browser, powered by WebKit. Thi... • http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00008.html • CWE-290: Authentication Bypass by Spoofing •

CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0

CVE-2019-13708 – chromium-browser: HTTP authentication spoof

https://notcve.org/view.php?id=CVE-2019-13708

07 Nov 2019 — Inappropriate implementation in navigation in Google Chrome on iOS prior to 78.0.3904.70 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. Una implementación inapropiada en navigation en Google Chrome en iOS anterior a 78.0.3904.70, permitió a un atacante remoto falsificar el contenido del Omnibox (barra de URL) por medio de una página HTML diseñada. Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 78.0.3904.7... • http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00008.html • CWE-290: Authentication Bypass by Spoofing •

CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0

CVE-2019-13703 – chromium-browser: URL bar spoofing

https://notcve.org/view.php?id=CVE-2019-13703

07 Nov 2019 — Insufficient policy enforcement in the Omnibox in Google Chrome on Android prior to 78.0.3904.70 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. Una aplicación de política insuficiente en el Omnibox en Google Chrome en Android anterior a 78.0.3904.70, permitió a un atacante remoto falsificar el contenido del Omnibox (barra de URL) por medio de una página HTML diseñada. Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium t... • http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00008.html • CWE-290: Authentication Bypass by Spoofing •

CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 0

CVE-2019-13714 – chromium-browser: CSS injection

https://notcve.org/view.php?id=CVE-2019-13714

07 Nov 2019 — Insufficient validation of untrusted input in Color Enhancer extension in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to inject CSS into an HTML page via a crafted URL. La comprobación insuficiente de una entrada no confiable en Color Enhancer extension en Google Chrome versiones anteriores a 78.0.3904.70, permitió a un atacante remoto inyectar CSS en una página HTML por medio de una URL diseñada. Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to v... • http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00008.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •

CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0

CVE-2019-13719 – chromium-browser: Notification obscured

https://notcve.org/view.php?id=CVE-2019-13719

07 Nov 2019 — Incorrect security UI in full screen mode in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to hide security UI via a crafted HTML page. Una interfaz de usuario de seguridad incorrecta en full screen mode en Google Chrome versiones anteriores a 78.0.3904.70, permitió a un atacante remoto ocultar la Interfaz de Usuario de seguridad por medio de una página HTML diseñada. Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 78.0.3904.70. Issues addr... • http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00008.html • CWE-922: Insecure Storage of Sensitive Information •

CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0

CVE-2019-13717 – chromium-browser: Notification obscured

https://notcve.org/view.php?id=CVE-2019-13717

CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0

CVE-2019-13709 – chromium-browser: File download protection bypass

https://notcve.org/view.php?id=CVE-2019-13709

07 Nov 2019 — Insufficient policy enforcement in downloads in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to bypass download restrictions via a crafted HTML page. Una aplicación de política insuficiente en downloads en Google Chrome versiones anteriores a 78.0.3904.70, permitió a un atacante remoto omitir las restricciones de descarga por medio de una página HTML diseñada. Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 78.0.3904.70. Issues addressed i... • http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00008.html • CWE-290: Authentication Bypass by Spoofing •

CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0

CVE-2019-13704 – chromium-browser: CSP bypass

https://notcve.org/view.php?id=CVE-2019-13704

07 Nov 2019 — Insufficient policy enforcement in navigation in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to bypass content security policy via a crafted HTML page. Una aplicación de política insuficiente en navigation en Google Chrome versiones anteriores a 78.0.3904.70, permitió a un atacante remoto omitir la política de seguridad de contenido por medio de una página HTML diseñada. Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 78.0.3904.70. Issues... • http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00008.html • CWE-290: Authentication Bypass by Spoofing •

CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0

CVE-2019-13716 – chromium-browser: Service worker state error

https://notcve.org/view.php?id=CVE-2019-13716

07 Nov 2019 — Insufficient policy enforcement in service workers in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Una aplicación de política insuficiente en service workers en Google Chrome versiones anteriores a 78.0.3904.70, permitió a un atacante remoto omitir las restricciones de navegación por medio de una página HTML diseñada. Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 78.0.3904.70. Is... • http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00008.html • CWE-863: Incorrect Authorization •

CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0

CVE-2019-13721 – chromium-browser: use-after-free in PDFium

https://notcve.org/view.php?id=CVE-2019-13721

07 Nov 2019 — Use after free in PDFium in Google Chrome prior to 78.0.3904.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en PDFium en Google Chrome versiones anteriores a 78.0.3904.87, permitió a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution of... • http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00022.html • CWE-416: Use After Free CWE-787: Out-of-bounds Write •

1...138 139 140 141 142