HomePentest-Tools.com Logo

Google Chrome Security Updates(stable-channel-update-for-desktop_12-2019-03)-Linux CVE-2019-5787CVE-2019-5788CVE-2019-5789CVE-2019-5790CVE-2019-5791CVE-2019-5792CVE-2019-5793CVE-2019-5794CVE-2019-5795CVE-2019-5796CVE-2019-5797CVE-2019-5798CVE-2019-5799CVE-2019-5800CVE-2019-5801CVE-2019-5802CVE-2019-5803CVE-2019-5804

Severity
CVSSv3 Score
5.5
Vulnerability description

Google Chrome is prone to multiple vulnerabilities.

Risk description

Multiple flaws exist due to: - Use after free errors in Canvas, FileAPI, WebMIDI. - Heap buffer overflow error in V8. - Type confusion error in V8. - Integer overflow error in PDFium. - Excessive permissions for private API in Extensions. - Security UI spoofing. - Race condition in Extensions and DOMStorage. - Out of bounds read error in Skia. - CSP bypass errors with blob URL and Javascript URLs. - Incorrect Omnibox display on iOS. - Command line command injection on Windows. Successful exploitation will allow a remote attacker to execute arbitrary code, cause denial of service and spoofing attacks, and also take control of an affected system.

Recommendation

Upgrade to Google Chrome version 73.0.3683.75 or later. Please see the references for more information.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
May 23, 2019
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available