| Max CVSS | 6.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2019-5858 | 6.8 |
Incorrect security UI in MacOS services integration in Google Chrome on OS X prior to 76.0.3809.87 allowed a local attacker to execute arbitrary code via a crafted HTML page.
|
08-09-2021 - 17:22 | 25-11-2019 - 15:15 | |
| CVE-2019-5864 | 4.3 |
Insufficient data validation in CORS in Google Chrome prior to 76.0.3809.87 allowed an attacker who convinced a user to install a malicious extension to bypass content security policy via a crafted Chrome Extension.
|
21-07-2021 - 11:39 | 25-11-2019 - 15:15 | |
| CVE-2019-5859 | 6.8 |
Insufficient filtering in URI schemes in Google Chrome on Windows prior to 76.0.3809.87 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.
|
21-07-2021 - 11:39 | 25-11-2019 - 15:15 | |
| CVE-2019-5865 | 4.3 |
Insufficient policy enforcement in navigations in Google Chrome prior to 76.0.3809.87 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page.
|
21-07-2021 - 11:39 | 25-11-2019 - 15:15 | |
| CVE-2019-5857 | 4.3 |
Inappropriate implementation in JavaScript in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page.
|
24-08-2020 - 17:37 | 25-11-2019 - 15:15 | |
| CVE-2019-5854 | 6.8 |
Integer overflow in PDFium in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.
|
24-08-2020 - 17:37 | 25-11-2019 - 15:15 | |
| CVE-2019-5855 | 4.3 |
Integer overflow in PDFium in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.
|
24-08-2020 - 17:37 | 25-11-2019 - 15:15 | |
| CVE-2019-5860 | 4.3 |
Use after free in PDFium in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.
|
24-08-2020 - 17:37 | 25-11-2019 - 15:15 | |
| CVE-2019-5851 | 6.8 |
Use after free in WebAudio in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
24-08-2020 - 17:37 | 25-11-2019 - 15:15 | |
| CVE-2019-5853 | 6.8 |
Inappropriate implementation in JavaScript in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
24-08-2020 - 17:37 | 25-11-2019 - 15:15 | |
| CVE-2019-5856 | 6.8 |
Insufficient policy enforcement in storage in Google Chrome prior to 76.0.3809.87 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page.
|
02-12-2019 - 17:02 | 25-11-2019 - 15:15 | |
| CVE-2019-5861 | 4.3 |
Insufficient data validation in Blink in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to bypass anti-clickjacking policy via a crafted HTML page.
|
02-12-2019 - 16:13 | 25-11-2019 - 15:15 | |
| CVE-2019-5862 | 4.3 |
Insufficient data validation in AppCache in Google Chrome prior to 76.0.3809.87 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page.
|
02-12-2019 - 16:07 | 25-11-2019 - 15:15 | |
| CVE-2019-5852 | 4.3 |
Inappropriate implementation in JavaScript in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.
|
27-11-2019 - 19:06 | 25-11-2019 - 15:15 | |
| CVE-2019-5850 | 6.8 |
Use after free in offline mode in Google Chrome prior to 76.0.3809.87 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
|
26-11-2019 - 14:02 | 25-11-2019 - 15:15 |