Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kim vulnerabilities and exploits
(subscribe to this query)
4.4
CVSSv3
CVE-2020-11494
An issue exists in slc_bump in drivers/net/can/slcan.c in the Linux kernel 3.16 up to and including 5.6.2. It allows malicious users to read uninitialized can_frame data, potentially containing sensitive information from kernel stack memory, if the configuration lacks CONFIG_INIT...
Linux Linux Kernel
Opensuse Leap 15.1
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 16.04
8.8
CVSSv3
CVE-2023-38600
The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may lead to arbitrary code execution.
Apple Macos
Apple Ipados
Apple Iphone Os
Apple Watchos
Apple Tvos
Apple Safari
5.3
CVSSv3
CVE-2019-13660
UI spoofing in Chromium in Google Chrome before 77.0.3865.75 allowed a remote malicious user to spoof notifications via a crafted HTML page.
Google Chrome
4.3
CVSSv3
CVE-2019-13661
UI spoofing in Chromium in Google Chrome before 77.0.3865.75 allowed a remote malicious user to spoof notifications via a crafted HTML page.
Google Chrome
6.5
CVSSv3
CVE-2019-13662
Insufficient policy enforcement in navigations in Google Chrome before 77.0.3865.75 allowed a remote malicious user to bypass content security policy via a crafted HTML page.
Google Chrome
4.3
CVSSv3
CVE-2019-13663
IDN spoofing in Omnibox in Google Chrome before 77.0.3865.75 allowed a remote malicious user to perform domain spoofing via IDN homographs via a crafted domain name.
Google Chrome
6.5
CVSSv3
CVE-2019-13664
Insufficient policy enforcement in Blink in Google Chrome before 77.0.3865.75 allowed a remote malicious user to bypass content security policy via a crafted HTML page.
Google Chrome
6.5
CVSSv3
CVE-2019-13665
Insufficient filtering in Blink in Google Chrome before 77.0.3865.75 allowed a remote malicious user to bypass multiple file download protection via a crafted HTML page.
Google Chrome
7.4
CVSSv3
CVE-2019-13666
Information leak in storage in Google Chrome before 77.0.3865.75 allowed a remote malicious user to leak cross-origin data via a crafted HTML page.
Google Chrome
4.3
CVSSv3
CVE-2019-13667
Inappropriate implementation in Omnibox in Google Chrome on iOS before 77.0.3865.75 allowed a remote malicious user to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
Google Chrome
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »