» 2020 » 5월

CVE-2020-8572

Posted on 2020년 5월 22일2020년 5월 22일 by admin

CVE-2020-8572

Element OS prior to version 12.0 and Element HealthTools prior to version 2020.04.01.04 are susceptible to a vulnerability which when successfully exploited could lead to disclosure of sensitive information.

Source: CVE-2020-8572

CVE-2020-6490

Posted on 2020년 5월 21일2020년 5월 21일 by admin

CVE-2020-6490

Insufficient data validation in loader in Google Chrome prior to 83.0.4103.61 allowed a remote attacker who had been able to write to disk to leak cross-origin data via a crafted HTML page.

Source: CVE-2020-6490

CVE-2020-6487

Posted on 2020년 5월 21일2020년 5월 21일 by admin

CVE-2020-6487

Insufficient policy enforcement in downloads in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.

Source: CVE-2020-6487

CVE-2020-6488

Posted on 2020년 5월 21일2020년 5월 21일 by admin

CVE-2020-6488

Insufficient policy enforcement in downloads in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.

Source: CVE-2020-6488

CVE-2020-6489

Posted on 2020년 5월 21일2020년 5월 21일 by admin

CVE-2020-6489

Inappropriate implementation in developer tools in Google Chrome prior to 83.0.4103.61 allowed a remote attacker who had convinced the user to take certain actions in developer tools to obtain potentially sensitive information from disk via a crafted HTML page.

Source: CVE-2020-6489

CVE-2020-6491

Posted on 2020년 5월 21일2020년 5월 21일 by admin

CVE-2020-6491

Insufficient data validation in site information in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to spoof security UI via a crafted domain name.

Source: CVE-2020-6491

CVE-2020-6484

Posted on 2020년 5월 21일2020년 5월 21일 by admin

CVE-2020-6484

Insufficient data validation in ChromeDriver in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to bypass navigation restrictions via a crafted request.

Source: CVE-2020-6484

CVE-2020-6485

Posted on 2020년 5월 21일2020년 5월 21일 by admin

CVE-2020-6485

Insufficient data validation in media router in Google Chrome prior to 83.0.4103.61 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page.

Source: CVE-2020-6485

CVE-2020-6482

Posted on 2020년 5월 21일2020년 5월 21일 by admin

CVE-2020-6482

Insufficient policy enforcement in developer tools in Google Chrome prior to 83.0.4103.61 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension.

Source: CVE-2020-6482

CVE-2020-6483

Posted on 2020년 5월 21일2020년 5월 21일 by admin

CVE-2020-6483

Insufficient policy enforcement in payments in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.

Source: CVE-2020-6483