VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Opensuse
> Backports
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2020-04-13
CVE-2020-6446
Incorrect Default Permissions vulnerability in multiple products
Insufficient policy enforcement in trusted types in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to bypass content security policy via a crafted HTML page.
network
low complexity
google
debian
fedoraproject
opensuse
CWE-276
6.5
6.5
2020-04-13
CVE-2020-6445
Incorrect Default Permissions vulnerability in multiple products
Insufficient policy enforcement in trusted types in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to bypass content security policy via a crafted HTML page.
network
low complexity
google
debian
fedoraproject
opensuse
CWE-276
6.5
6.5
2020-04-13
CVE-2020-6443
Insufficient Verification of Data Authenticity vulnerability in multiple products
Insufficient data validation in developer tools in Google Chrome prior to 81.0.4044.92 allowed a remote attacker who had convinced the user to use devtools to execute arbitrary code via a crafted HTML page.
network
low complexity
google
debian
fedoraproject
opensuse
CWE-345
8.8
8.8
2020-04-13
CVE-2020-6442
Exposure of Resource to Wrong Sphere vulnerability in multiple products
Inappropriate implementation in cache in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
network
low complexity
google
debian
fedoraproject
opensuse
CWE-668
4.3
4.3
2020-04-13
CVE-2020-6441
Incorrect Default Permissions vulnerability in multiple products
Insufficient policy enforcement in omnibox in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to bypass security UI via a crafted HTML page.
network
low complexity
google
debian
fedoraproject
opensuse
CWE-276
4.3
4.3
2020-04-13
CVE-2020-6440
Inappropriate implementation in extensions in Google Chrome prior to 81.0.4044.92 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information via a crafted Chrome Extension.
network
low complexity
google
debian
fedoraproject
opensuse
4.3
4.3
2020-04-13
CVE-2020-6439
Incorrect Default Permissions vulnerability in multiple products
Insufficient policy enforcement in navigations in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to bypass security UI via a crafted HTML page.
network
low complexity
google
debian
fedoraproject
opensuse
CWE-276
8.8
8.8
2020-04-13
CVE-2020-6437
Inappropriate implementation in WebView in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to spoof security UI via a crafted application.
network
low complexity
google
debian
fedoraproject
opensuse
4.3
4.3
2020-04-13
CVE-2020-6435
Insufficient policy enforcement in extensions in Google Chrome prior to 81.0.4044.92 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page.
network
low complexity
google
debian
fedoraproject
opensuse
4.3
4.3
2020-04-13
CVE-2020-6433
Insufficient policy enforcement in extensions in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.
network
low complexity
google
debian
fedoraproject
opensuse
4.3
4.3
«
Previous
1
2
(current)
3
4
5
...
9
10
»
Next