Vulnerabilities > Fedoraproject > Fedora
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-06-27 | CVE-2019-5814 | Cross-Site Request Forgery (CSRF) vulnerability in multiple products Insufficient policy enforcement in Blink in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to leak cross-origin data via a crafted HTML page. | 6.5 |
| 2019-06-27 | CVE-2019-5813 | Use After Free vulnerability in multiple products Use after free in V8 in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2019-06-27 | CVE-2019-5812 | Inadequate security UI in iOS UI in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to perform domain spoofing via a crafted HTML page. | 6.5 |
| 2019-06-27 | CVE-2019-5811 | Incorrect handling of CORS in ServiceWorker in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to bypass same origin policy via a crafted HTML page. | 8.8 |
| 2019-06-27 | CVE-2019-5810 | Cleartext Storage of Sensitive Information vulnerability in multiple products Information leak in autofill in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. | 6.5 |
| 2019-06-27 | CVE-2019-5809 | Use After Free vulnerability in multiple products Use after free in file chooser in Google Chrome prior to 74.0.3729.108 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. | 8.8 |
| 2019-06-27 | CVE-2019-5808 | Use After Free vulnerability in multiple products Use after free in Blink in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2019-06-27 | CVE-2019-5807 | Out-of-bounds Write vulnerability in multiple products Object lifetime issue in V8 in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2019-06-27 | CVE-2019-5806 | Integer Overflow or Wraparound vulnerability in multiple products Integer overflow in ANGLE in Google Chrome on Windows prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2019-06-27 | CVE-2019-5805 | Use After Free vulnerability in multiple products Use-after-free in PDFium in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. | 6.5 |