» 2019 » 6월

CVE-2018-16070

Posted on 2019년 6월 28일2019년 6월 28일 by admin

CVE-2018-16070

Integer overflows in Skia in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Source: CVE-2018-16070

CVE-2018-16074

Posted on 2019년 6월 28일2019년 6월 28일 by admin

CVE-2018-16074

Insufficient policy enforcement in site isolation in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to bypass site isolation via a crafted HTML page.

Source: CVE-2018-16074

CVE-2018-16073

Posted on 2019년 6월 28일2019년 6월 28일 by admin

CVE-2018-16073

Insufficient policy enforcement in site isolation in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to bypass site isolation via a crafted HTML page.

Source: CVE-2018-16073

CVE-2018-16064

Posted on 2019년 6월 28일2019년 6월 28일 by admin

CVE-2018-16064

Insufficient data validation in Extensions API in Google Chrome prior to 68.0.3440.75 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension.

Source: CVE-2018-16064

CVE-2018-17460

Posted on 2019년 6월 28일2019년 6월 28일 by admin

CVE-2018-17460

Insufficient data validation in filesystem URIs in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name.

Source: CVE-2018-17460

CVE-2018-17479

Posted on 2019년 6월 28일2019년 6월 28일 by admin

CVE-2018-17479

Incorrect object lifetime calculations in GPU code in Google Chrome prior to 70.0.3538.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Source: CVE-2018-17479

CVE-2018-17478

Posted on 2019년 6월 28일2019년 6월 28일 by admin

CVE-2018-17478

Incorrect array position calculations in V8 in Google Chrome prior to 70.0.3538.102 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page.

Source: CVE-2018-17478

CVE-2018-15557

Posted on 2019년 6월 28일2019년 6월 28일 by admin

CVE-2018-15557

An issue was discovered in the Quantenna WiFi Controller on Telus Actiontec WEB6000Q v1.1.02.22 devices. An attacker can statically set his/her IP to anything on the 169.254.1.0/24 subnet, and obtain root access by connecting to 169.254.1.2 port 23 with telnet/netcat.

Source: CVE-2018-15557

CVE-2018-16069

Posted on 2019년 6월 28일2019년 6월 28일 by admin

CVE-2018-16069

Unintended floating-point error accumulation in SwiftShader in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

Source: CVE-2018-16069

CVE-2018-16077

Posted on 2019년 6월 28일2019년 6월 28일 by admin

CVE-2018-16077

Object lifecycle issue in Blink in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to bypass content security policy via a crafted HTML page.

Source: CVE-2018-16077