10.0.604.0

DATE	CVE	VULNERABILITY TITLE	RISK
2019-11-25	CVE-2019-13685	Use After Free vulnerability in Google Chrome Use after free in sharing view in Google Chrome prior to 77.0.3865.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google CWE-416	8.8
2019-11-25	CVE-2019-13684	Information Exposure Through Discrepancy vulnerability in Google Chrome Inappropriate implementation in JavaScript in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to leak cross-origin data via a crafted HTML page. network high complexity google CWE-203	5.3
2019-11-25	CVE-2019-13683	Improper Handling of Exceptional Conditions vulnerability in Google Chrome Insufficient policy enforcement in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page. network low complexity google CWE-755	6.5
2019-11-25	CVE-2019-13682	Improper Preservation of Permissions vulnerability in Google Chrome Insufficient policy enforcement in external protocol handling in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to bypass same origin policy via a crafted HTML page. network low complexity google CWE-281	8.8
2019-11-25	CVE-2019-13681	Incorrect Permission Assignment for Critical Resource vulnerability in Google Chrome Insufficient data validation in downloads in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to bypass download restrictions via a crafted HTML page. network low complexity google CWE-732	4.3
2019-11-25	CVE-2019-13680	Unspecified vulnerability in Google Chrome Inappropriate implementation in TLS in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to spoof client IP address to websites via crafted TLS connections. network low complexity google	5.3
2019-11-25	CVE-2019-13679	Incorrect Permission Assignment for Critical Resource vulnerability in Google Chrome Insufficient policy enforcement in PDFium in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to show print dialogs via a crafted PDF file. local low complexity google CWE-732	3.3
2019-11-25	CVE-2019-13678	Unspecified vulnerability in Google Chrome Incorrect data validation in downloads in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to perform domain spoofing via a crafted HTML page. network low complexity google	6.5
2019-11-25	CVE-2019-13677	Incorrect Permission Assignment for Critical Resource vulnerability in Google Chrome Insufficient policy enforcement in site isolation in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to bypass site isolation via a crafted HTML page. network low complexity google CWE-732	6.5
2019-11-25	CVE-2019-13676	Incorrect Permission Assignment for Critical Resource vulnerability in Google Chrome Insufficient policy enforcement in Chromium in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to perform domain spoofing via a crafted HTML page. network low complexity google CWE-732	4.3