CVSS: 8.8EPSS: 86%CPEs: 1EXPL: 5CVE-2019-5825 – Google Chromium V8 Out-of-Bounds Write Vulnerability
https://notcve.org/view.php?id=CVE-2019-5825
14 Aug 2019 — Out of bounds write in JavaScript in Google Chrome prior to 73.0.3683.86 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Una escritura fuera de límites en JavaScript en Google Chrome versiones anteriores a 73.0.3683.86, permitió a un atacante remoto, explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada. Several vulnerabilities have been discovered in the chromium web browser. Google Chromium V8 Engine contains an out-of-bounds writ... • https://packetstorm.news/files/id/156641 • CWE-787: Out-of-bounds Write •
CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 0CVE-2019-5849 – Debian Security Advisory 4500-1
https://notcve.org/view.php?id=CVE-2019-5849
14 Aug 2019 — Out of bounds read in Skia in Google Chrome prior to 75.0.3770.80 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Una lectura fuera de límites en Skia en Google Chrome versiones anteriores a 75.0.3770.80, permitió a un atacante remoto obtener información potencialmente confidencial de la memoria de proceso por medio de una página HTML diseñada. Several vulnerabilities have been discovered in the chromium web browser. • https://chromereleases.googleblog.com/2019/06/stable-channel-update-for-desktop.html • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-5868 – Debian Security Advisory 4500-1
https://notcve.org/view.php?id=CVE-2019-5868
14 Aug 2019 — Use after free in PDFium in Google Chrome prior to 76.0.3809.100 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. Un uso de la memoria previamente liberada en PDFium en Google Chrome versiones anteriores a 76.0.3809.100, permitió a un atacante remoto explotar potencialmente una corrupción de la pila por medio de un archivo PDF diseñado. Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could allow remote attackers to execute ar... • https://chromereleases.googleblog.com/2019/08/stable-channel-update-for-desktop.html • CWE-416: Use After Free CWE-787: Out-of-bounds Write •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-5867 – Debian Security Advisory 4500-1
https://notcve.org/view.php?id=CVE-2019-5867
14 Aug 2019 — Out of bounds read in JavaScript in Google Chrome prior to 76.0.3809.100 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Una lectura fuera de límites en JavaScript en Google Chrome versiones anteriores a 76.0.3809.100, permitió a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could allow remote attackers to execute a... • https://chromereleases.googleblog.com/2019/08/stable-channel-update-for-desktop.html • CWE-125: Out-of-bounds Read •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-5851 – chromium-browser: Use-after-poison in offline audio context
https://notcve.org/view.php?id=CVE-2019-5851
12 Aug 2019 — Use after free in WebAudio in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en WebAudio en Google Chrome versiones anteriores a 76.0.3809.87, permitió a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could allow remote attackers to execut... • https://chromereleases.googleblog.com/2019/07/stable-channel-update-for-desktop_30.html • CWE-416: Use After Free CWE-787: Out-of-bounds Write •
CVSS: 9.6EPSS: 0%CPEs: 1EXPL: 0CVE-2019-5850 – chromium-browser: Use-after-free in offline page fetcher
https://notcve.org/view.php?id=CVE-2019-5850
12 Aug 2019 — Use after free in offline mode in Google Chrome prior to 76.0.3809.87 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Un uso de la memoria previamente liberada en offline en Google Chrome versiones anteriores a 76.0.3809.87, permitió a un atacante remoto, que había comprometido el proceso del renderizador, realizar potencialmente un escape de sandbox por medio de una página HTML diseñada. Multiple vulnerabilities have been f... • https://chromereleases.googleblog.com/2019/07/stable-channel-update-for-desktop_30.html • CWE-416: Use After Free •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-5865 – chromium-browser: Site isolation bypass from compromised renderer
https://notcve.org/view.php?id=CVE-2019-5865
12 Aug 2019 — Insufficient policy enforcement in navigations in Google Chrome prior to 76.0.3809.87 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Una aplicación de política insuficiente en navigations en Google Chrome versiones anteriores a 76.0.3809.87, permitió a un atacante remoto, que había comprometido el proceso del renderizador, omitir el aislamiento del sitio por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Ch... • https://chromereleases.googleblog.com/2019/07/stable-channel-update-for-desktop_30.html • CWE-862: Missing Authorization •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2019-5859 – chromium-browser: res: URIs can load alternative browsers
https://notcve.org/view.php?id=CVE-2019-5859
12 Aug 2019 — Insufficient filtering in URI schemes in Google Chrome on Windows prior to 76.0.3809.87 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Un filtrado insuficiente en URI schemes en Google Chrome en Windows versiones anteriores a 76.0.3809.87, permitió a un atacante remoto omitir las restricciones de navegación por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could allow remote attackers to exe... • https://chromereleases.googleblog.com/2019/07/stable-channel-update-for-desktop_30.html •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-5852 – chromium-browser: Object leak of utility functions
https://notcve.org/view.php?id=CVE-2019-5852
12 Aug 2019 — Inappropriate implementation in JavaScript in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Una implementación inapropiada en JavaScript en Google Chrome versiones anteriores a 76.0.3809.87, permitió a un atacante remoto obtener información potencialmente confidencial de la memoria de proceso por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and Google Chrome, th... • https://chromereleases.googleblog.com/2019/07/stable-channel-update-for-desktop_30.html • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-5857 – chromium-browser: Comparison of -0 and null yields crash
https://notcve.org/view.php?id=CVE-2019-5857
12 Aug 2019 — Inappropriate implementation in JavaScript in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. Una implementación inapropiada en JavaScript en Google Chrome versiones anteriores a 76.0.3809.87, permitió a un atacante remoto explotar potencialmente una corrupción de objetos por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could allow remote attackers ... • https://chromereleases.googleblog.com/2019/07/stable-channel-update-for-desktop_30.html • CWE-787: Out-of-bounds Write •