VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Opensuse
>
Leap
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2020-09-21
CVE-2020-6565
Inappropriate implementation in Omnibox in Google Chrome on iOS prior to 85.0.4183.83 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
network
low complexity
google
debian
opensuse
fedoraproject
6.5
6.5
2020-09-21
CVE-2020-6564
Improper Preservation of Permissions vulnerability in multiple products
Inappropriate implementation in permissions in Google Chrome prior to 85.0.4183.83 allowed a remote attacker to spoof the contents of a permission dialog via a crafted HTML page.
network
low complexity
debian
opensuse
google
fedoraproject
CWE-281
6.5
6.5
2020-09-21
CVE-2020-6563
Insufficient policy enforcement in intent handling in Google Chrome on Android prior to 85.0.4183.83 allowed a remote attacker to obtain potentially sensitive information from disk via a crafted HTML page.
network
low complexity
google
debian
opensuse
fedoraproject
6.5
6.5
2020-09-21
CVE-2020-6562
Cross-site Scripting vulnerability in multiple products
Insufficient policy enforcement in Blink in Google Chrome prior to 85.0.4183.83 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
network
low complexity
google
debian
opensuse
fedoraproject
CWE-79
6.5
6.5
2020-09-21
CVE-2020-6561
Inappropriate implementation in Content Security Policy in Google Chrome prior to 85.0.4183.83 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
network
low complexity
google
debian
opensuse
fedoraproject
6.5
6.5
2020-09-21
CVE-2020-6560
Insufficient policy enforcement in autofill in Google Chrome prior to 85.0.4183.83 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
network
low complexity
google
debian
opensuse
fedoraproject
6.5
6.5
2020-09-21
CVE-2020-6558
Cross-site Scripting vulnerability in multiple products
Insufficient policy enforcement in iOSWeb in Google Chrome on iOS prior to 85.0.4183.83 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.
network
low complexity
google
opensuse
debian
CWE-79
6.5
6.5
2020-09-21
CVE-2020-15966
Insufficient policy enforcement in extensions in Google Chrome prior to 85.0.4183.121 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information via a crafted Chrome Extension.
network
low complexity
google
debian
opensuse
fedoraproject
4.3
4.3
2020-09-21
CVE-2020-15959
Insufficient policy enforcement in networking in Google Chrome prior to 85.0.4183.102 allowed an attacker who convinced the user to enable logging to obtain potentially sensitive information from process memory via social engineering.
network
low complexity
google
opensuse
fedoraproject
debian
4.3
4.3
2020-09-17
CVE-2020-0431
Out-of-bounds Write vulnerability in multiple products
In kbd_keycode of keyboard.c, there is a possible out of bounds write due to a missing bounds check.
local
low complexity
google
opensuse
CWE-787
6.7
6.7
«
Previous
1
2
...
3
4
5
(current)
6
7
...
75
76
»
Next