Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
CVE-2020-6507 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2020-6495
Insufficient policy enforcement in developer tools in Google Chrome before 83.0.4103.97 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension.
Google Chrome
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Opensuse Leap 15.1
Opensuse Backports Sle-15
8.8
CVSSv3
CVE-2020-6496
Use after free in payments in Google Chrome on MacOS before 83.0.4103.97 allowed a remote malicious user to potentially perform a sandbox escape via a crafted HTML page.
Google Chrome
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
6.5
CVSSv3
CVE-2020-6497
Insufficient policy enforcement in Omnibox in Google Chrome on iOS before 83.0.4103.88 allowed a remote malicious user to perform domain spoofing via a crafted URI.
Google Chrome
Debian Debian Linux 9.0
Debian Debian Linux 10.0
6.5
CVSSv3
CVE-2020-6498
Incorrect implementation in user interface in Google Chrome on iOS before 83.0.4103.88 allowed a remote malicious user to perform domain spoofing via a crafted HTML page.
Google Chrome
Debian Debian Linux 9.0
Debian Debian Linux 10.0
9.6
CVSSv3
CVE-2020-6505
Use after free in speech in Google Chrome before 83.0.4103.106 allowed a remote malicious user to potentially perform a sandbox escape via a crafted HTML page.
Google Chrome
6.5
CVSSv3
CVE-2020-6506
Insufficient policy enforcement in WebView in Google Chrome on Android before 83.0.4103.106 allowed a remote malicious user to bypass site isolation via a crafted HTML page.
Google Chrome
4 Github repositories
9.6
CVSSv3
CVE-2020-6509
Use after free in extensions in Google Chrome before 83.0.4103.116 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension.
Google Chrome
8.8
CVSSv3
CVE-2020-6459
Use after free in payments in Google Chrome before 81.0.4044.122 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
Debian Debian Linux 9.0
Debian Debian Linux 10.0
6.5
CVSSv3
CVE-2020-6460
Insufficient data validation in URL formatting in Google Chrome before 81.0.4044.122 allowed a remote malicious user to perform domain spoofing via a crafted domain name.
Google Chrome
Debian Debian Linux 9.0
Debian Debian Linux 10.0
9.6
CVSSv3
CVE-2020-6461
Use after free in storage in Google Chrome before 81.0.4044.129 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
Google Chrome
Debian Debian Linux 9.0
Debian Debian Linux 10.0
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27975
CVE-2024-2961
CVE-2024-20380
XML injection
HTML injection
CVE-2024-29204
CVE-2023-51795
memory leak
CVE-2024-3470
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »