CVE search results

171 – 180 of 878 results

Detailed view

Sort by:

CVE-2018-6050

Low priority

Some fixes available 5 of 7

Incorrect security UI in Omnibox in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.

2 affected packages

chromium-browser, oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
chromium-browser	—	—	—	Fixed	Fixed
oxide-qt	—	—	—	Not in release	Ignored

CVE-2018-6049

Low priority

Some fixes available 5 of 7

Incorrect security UI in permissions prompt in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to spoof the origin to which permission is granted via a crafted HTML page.

2 affected packages

chromium-browser, oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
chromium-browser	—	—	—	Fixed	Fixed
oxide-qt	—	—	—	Not in release	Ignored

CVE-2018-6048

Low priority

Some fixes available 5 of 7

Insufficient policy enforcement in Blink in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak referrer information via a crafted HTML page.

2 affected packages

chromium-browser, oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
chromium-browser	—	—	—	Fixed	Fixed
oxide-qt	—	—	—	Not in release	Ignored

CVE-2018-6047

Medium priority

Some fixes available 5 of 7

Insufficient policy enforcement in WebGL in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user redirect URL via a crafted HTML page.

2 affected packages

chromium-browser, oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
chromium-browser	—	—	—	Fixed	Fixed
oxide-qt	—	—	—	Not in release	Ignored

CVE-2018-6046

Medium priority

Some fixes available 5 of 7

Insufficient data validation in DevTools in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user cross-origin data via a crafted Chrome Extension.

2 affected packages

chromium-browser, oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
chromium-browser	—	—	—	Fixed	Fixed
oxide-qt	—	—	—	Not in release	Ignored

CVE-2018-6045

Medium priority

Some fixes available 5 of 7

Insufficient policy enforcement in DevTools in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user local file data via a crafted Chrome Extension.

2 affected packages

chromium-browser, oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
chromium-browser	—	—	—	Fixed	Fixed
oxide-qt	—	—	—	Not in release	Ignored

CVE-2018-6043

Medium priority

Some fixes available 5 of 7

Insufficient data validation in External Protocol Handler in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially execute arbitrary programs on user machine via a crafted HTML page.

2 affected packages

chromium-browser, oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
chromium-browser	—	—	—	Fixed	Fixed
oxide-qt	—	—	—	Not in release	Ignored

CVE-2018-6042

Medium priority

Some fixes available 5 of 7

Incorrect security UI in Omnibox in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.

2 affected packages

chromium-browser, oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
chromium-browser	—	—	—	Fixed	Fixed
oxide-qt	—	—	—	Not in release	Ignored

CVE-2018-6041

Medium priority

Some fixes available 5 of 7

Incorrect security UI in navigation in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.

2 affected packages

chromium-browser, oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
chromium-browser	—	—	—	Fixed	Fixed
oxide-qt	—	—	—	Not in release	Ignored

CVE-2018-6040

Medium priority

Some fixes available 5 of 7

Insufficient policy enforcement in Blink in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially bypass content security policy via a crafted HTML page.

2 affected packages

chromium-browser, oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
chromium-browser	—	—	—	Fixed	Fixed
oxide-qt	—	—	—	Not in release	Ignored

Export to JSON

Results by page:

Search CVE reports