Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
man yue mo vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2019-13687
Use after free in Blink in Google Chrome before 77.0.3865.90 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
1 Article
8.8
CVSSv3
CVE-2019-13688
Use after free in Blink in Google Chrome before 77.0.3865.90 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
1 Article
8.8
CVSSv3
CVE-2019-13699
Use after free in media in Google Chrome before 78.0.3904.70 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
Opensuse Backports Sle 15.0
8.8
CVSSv3
CVE-2019-13700
Out of bounds memory access in the gamepad API in Google Chrome before 78.0.3904.70 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
Opensuse Backports Sle 15.0
4.3
CVSSv3
CVE-2019-13710
Insufficient validation of untrusted input in downloads in Google Chrome before 78.0.3904.70 allowed a remote malicious user to bypass download restrictions via a crafted HTML page.
Google Chrome
Opensuse Backports Sle 15.0
5.3
CVSSv3
CVE-2019-13711
Insufficient policy enforcement in JavaScript in Google Chrome before 78.0.3904.70 allowed a remote malicious user to leak cross-origin data via a crafted HTML page.
Google Chrome
Opensuse Backports Sle-15
6.5
CVSSv3
CVE-2019-13713
Insufficient policy enforcement in JavaScript in Google Chrome before 78.0.3904.70 allowed a remote malicious user to leak cross-origin data via a crafted HTML page.
Google Chrome
Opensuse Backports Sle-15
6.1
CVSSv3
CVE-2019-13714
Insufficient validation of untrusted input in Color Enhancer extension in Google Chrome before 78.0.3904.70 allowed a remote malicious user to inject CSS into an HTML page via a crafted URL.
Google Chrome
Opensuse Backports Sle 15.0
4.3
CVSSv3
CVE-2019-13715
Insufficient validation of untrusted input in Omnibox in Google Chrome before 78.0.3904.70 allowed a remote malicious user to perform domain spoofing via IDN homographs via a crafted domain name.
Google Chrome
Opensuse Backports Sle 15.0
4.3
CVSSv3
CVE-2019-13716
Insufficient policy enforcement in service workers in Google Chrome before 78.0.3904.70 allowed a remote malicious user to bypass navigation restrictions via a crafted HTML page.
Google Chrome
Opensuse Backports Sle 15.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »