Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensuse opensuse 10.0 vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2020-25032
An issue exists in Flask-CORS (aka CORS Middleware for Flask) prior to 3.0.9. It allows ../ directory traversal to access private resources because resource matching does not ensure that pathnames are in a canonical format.
Flask-cors Project Flask-cors
Debian Debian Linux 10.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Opensuse Leap 15.2
383
VMScore
CVE-2020-6560
Insufficient policy enforcement in autofill in Google Chrome before 85.0.4183.83 allowed a remote malicious user to leak cross-origin data via a crafted HTML page.
Google Chrome
Debian Debian Linux 10.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Opensuse Leap 15.2
Fedoraproject Fedora 33
383
VMScore
CVE-2020-6562
Insufficient policy enforcement in Blink in Google Chrome before 85.0.4183.83 allowed a remote malicious user to leak cross-origin data via a crafted HTML page.
Google Chrome
Debian Debian Linux 10.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Opensuse Leap 15.2
Fedoraproject Fedora 33
383
VMScore
CVE-2020-6564
Inappropriate implementation in permissions in Google Chrome before 85.0.4183.83 allowed a remote malicious user to spoof the contents of a permission dialog via a crafted HTML page.
Debian Debian Linux 10.0
Opensuse Backports Sle 15.0
Google Chrome
Fedoraproject Fedora 33
Opensuse Leap 15.1
Opensuse Leap 15.2
383
VMScore
CVE-2020-6566
Insufficient policy enforcement in media in Google Chrome before 85.0.4183.83 allowed a remote malicious user to leak cross-origin data via a crafted HTML page.
Google Chrome
Debian Debian Linux 10.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Opensuse Leap 15.2
Fedoraproject Fedora 33
383
VMScore
CVE-2020-6570
Information leakage in WebRTC in Google Chrome before 85.0.4183.83 allowed a remote malicious user to obtain potentially sensitive information via a crafted WebRTC interaction.
Google Chrome
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Opensuse Leap 15.2
Fedoraproject Fedora 33
Debian Debian Linux 10.0
383
VMScore
CVE-2020-6571
Insufficient data validation in Omnibox in Google Chrome before 85.0.4183.83 allowed a remote malicious user to perform domain spoofing via IDN homographs via a crafted domain name.
Google Chrome
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Opensuse Leap 15.2
Fedoraproject Fedora 33
Debian Debian Linux 10.0
828
VMScore
CVE-2020-6559
Use after free in presentation API in Google Chrome before 85.0.4183.83 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
Debian Debian Linux 10.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Opensuse Leap 15.2
Fedoraproject Fedora 33
383
VMScore
CVE-2020-6561
Inappropriate implementation in Content Security Policy in Google Chrome before 85.0.4183.83 allowed a remote malicious user to leak cross-origin data via a crafted HTML page.
Google Chrome
Debian Debian Linux 10.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Opensuse Leap 15.2
Fedoraproject Fedora 33
383
VMScore
CVE-2020-6563
Insufficient policy enforcement in intent handling in Google Chrome on Android before 85.0.4183.83 allowed a remote malicious user to obtain potentially sensitive information from disk via a crafted HTML page.
Google Chrome
Debian Debian Linux 10.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Opensuse Leap 15.2
Fedoraproject Fedora 33
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »