Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2019-06-27	CVE-2019-5830	Insufficient policy enforcement in CORS in Google Chrome prior to 75.0.3770.80 allowed a remote attacker to leak cross-origin data via a crafted HTML page. network low complexity google opensuse debian fedoraproject	6.5
2019-06-27	CVE-2019-5823	Open Redirect vulnerability in multiple products Insufficient policy enforcement in service workers in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. network low complexity google opensuse debian fedoraproject CWE-601	5.4
2019-06-27	CVE-2019-5818	Use of Uninitialized Resource vulnerability in multiple products Uninitialized data in media in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted video file. network low complexity google opensuse debian fedoraproject CWE-908	6.5
2019-06-27	CVE-2019-5814	Cross-Site Request Forgery (CSRF) vulnerability in multiple products Insufficient policy enforcement in Blink in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to leak cross-origin data via a crafted HTML page. network low complexity google opensuse debian fedoraproject CWE-352	6.5
2019-06-27	CVE-2019-5812	Inadequate security UI in iOS UI in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to perform domain spoofing via a crafted HTML page. network low complexity google fedoraproject	6.5
2019-06-27	CVE-2019-5810	Cleartext Storage of Sensitive Information vulnerability in multiple products Information leak in autofill in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. network low complexity google opensuse debian fedoraproject CWE-312	6.5
2019-06-27	CVE-2019-5805	Use After Free vulnerability in multiple products Use-after-free in PDFium in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. network low complexity google opensuse debian fedoraproject CWE-416	6.5
2019-06-19	CVE-2019-11038	Use of Uninitialized Resource vulnerability in multiple products When using the gdImageCreateFromXbm() function in the GD Graphics Library (aka LibGD) 2.2.5, as used in the PHP GD extension in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3.6, it is possible to supply data that will cause the function to use the value of uninitialized variable. network low complexity libgd php canonical debian fedoraproject suse opensuse redhat CWE-908	5.3
2019-06-11	CVE-2019-0197	HTTP Request Smuggling vulnerability in multiple products A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. network high complexity apache canonical fedoraproject opensuse redhat oracle CWE-444	4.2
2019-06-11	CVE-2019-0220	Use of Incorrectly-Resolved Name or Reference vulnerability in multiple products A vulnerability was found in Apache HTTP Server 2.4.0 to 2.4.38. network low complexity apache opensuse debian fedoraproject canonical CWE-706	5.3