Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
developer tools vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2020-6470
Insufficient validation of untrusted input in clipboard in Google Chrome before 83.0.4103.61 allowed a local malicious user to inject arbitrary scripts or HTML (UXSS) via crafted clipboard contents.
Google Chrome
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
6.8
CVSSv2
CVE-2020-6493
Use after free in WebAuthentication in Google Chrome before 83.0.4103.97 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
Google Chrome
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Opensuse Leap 15.1
Opensuse Backports Sle-15
4.3
CVSSv2
CVE-2020-6494
Incorrect security UI in payments in Google Chrome on Android before 83.0.4103.97 allowed a remote malicious user to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
Google Chrome
Debian Debian Linux 10.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
6.8
CVSSv2
CVE-2020-6496
Use after free in payments in Google Chrome on MacOS before 83.0.4103.97 allowed a remote malicious user to potentially perform a sandbox escape via a crafted HTML page.
Google Chrome
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
4.3
CVSSv2
CVE-2020-6497
Insufficient policy enforcement in Omnibox in Google Chrome on iOS before 83.0.4103.88 allowed a remote malicious user to perform domain spoofing via a crafted URI.
Google Chrome
Debian Debian Linux 9.0
Debian Debian Linux 10.0
4.3
CVSSv2
CVE-2020-6498
Incorrect implementation in user interface in Google Chrome on iOS before 83.0.4103.88 allowed a remote malicious user to perform domain spoofing via a crafted HTML page.
Google Chrome
Debian Debian Linux 9.0
Debian Debian Linux 10.0
6.8
CVSSv2
CVE-2020-6505
Use after free in speech in Google Chrome before 83.0.4103.106 allowed a remote malicious user to potentially perform a sandbox escape via a crafted HTML page.
Google Chrome
4.3
CVSSv2
CVE-2020-6506
Insufficient policy enforcement in WebView in Google Chrome on Android before 83.0.4103.106 allowed a remote malicious user to bypass site isolation via a crafted HTML page.
Google Chrome
4 Github repositories
6.8
CVSSv2
CVE-2020-6507
Out of bounds write in V8 in Google Chrome before 83.0.4103.106 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
2 Github repositories
6.8
CVSSv2
CVE-2020-6509
Use after free in extensions in Google Chrome before 83.0.4103.116 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension.
Google Chrome
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »