Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
yu yang vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2018-6121
Insufficient validation of input in Blink in Google Chrome before 66.0.3359.170 allowed a remote malicious user to perform privilege escalation via a crafted HTML page.
Google Chrome
605
VMScore
CVE-2018-6122
Type confusion in WebAssembly in Google Chrome before 66.0.3359.139 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
383
VMScore
CVE-2018-6125
Insufficient policy enforcement in USB in Google Chrome on Windows before 67.0.3396.62 allowed a remote malicious user to obtain potentially sensitive information via a crafted HTML page.
Google Chrome
516
VMScore
CVE-2018-6138
Insufficient policy enforcement in Extensions API in Google Chrome before 67.0.3396.62 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension.
Google Chrome
384
VMScore
CVE-2018-6142
Array bounds check failure in V8 in Google Chrome before 67.0.3396.62 allowed a remote malicious user to perform an out of bounds memory read via a crafted PDF file.
Google Chrome
383
VMScore
CVE-2018-6145
Insufficient data validation in HTML parser in Google Chrome before 67.0.3396.62 allowed a remote malicious user to bypass same origin policy via a crafted HTML page.
Google Chrome
435
VMScore
CVE-2018-6129
Out of bounds array access in WebRTC in Google Chrome before 67.0.3396.62 allowed a remote malicious user to potentially perform out of bounds memory access via a crafted HTML page.
Google Chrome
1 EDB exploit
435
VMScore
CVE-2018-6130
Incorrect handling of object lifetimes in WebRTC in Google Chrome before 67.0.3396.62 allowed a remote malicious user to potentially perform out of bounds memory access via a crafted HTML page.
Google Chrome
1 EDB exploit
605
VMScore
CVE-2018-6131
Object lifecycle issue in WebAssembly in Google Chrome before 67.0.3396.62 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
383
VMScore
CVE-2018-6132
Uninitialized data in WebRTC in Google Chrome before 67.0.3396.62 allowed a remote malicious user to obtain potentially sensitive information from process memory via a crafted video file.
Google Chrome
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
command injection
CVE-2021-47511
CVE-2024-26238
CVE-2024-4858
CVE-2024-21305
XXE
CVE-2021-47555
CVE-2021-47526
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »