Plugins Database As of 12-07-2019

Google Chrome Security Updates(stable-channel-update-for-desktop_22-2019-10)-Mac OS X

General
Impact by CVSS Score
  • ID: 1.3.6.1.4.1.25623.1.0.815815

CVSS Base Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Summary:
The host is installed with Google Chrome and is prone to multiple vulnerabilities.

Detection Method:
Checks if a vulnerable version is present on the target host.

Technical Details:
Multiple flaws exist due to, - An use-after-free error in media. - A buffer overrun error in Blink. - Muultiple spoofing errors. - A privilege elevation error in Installer. - A CSP bypass error. - An extension permission bypass error. - An out-of-bounds read error in PDFium. - File storage disclosure. - HTTP authentication spoof. - File download protection bypass. - Cross-context information leak. - Cross-origin data leak. - CSS injection error. - Service worker state error.

Impact:
Successful exploitation allows attackers to execute arbitrary code in the context of the browser, cause denial of service condition, disclose sensitive information and conduct spoofing attack..

Affected Versions:
Google Chrome version prior to 78.0.3904.70 on Mac OS X

Recommendations:
Upgrade to Google Chrome version 78.0.3904.70 or later. Please see the references for more information.

Solution Type:
Vendor Patch

Detection Type:
Executable

Search
Severity
Medium
CVSS Score
5.0
Published
2019-10-24 09:56:40
Modified
2019-10-25 11:55:21
CVE
CVE-2019-13699
CVE-2019-13700
CVE-2019-13701
CVE-2019-13702
CVE-2019-13703
CVE-2019-13704
CVE-2019-13705
CVE-2019-13706
CVE-2019-13707
CVE-2019-13708
CVE-2019-13709
CVE-2019-13710
CVE-2019-13711
CVE-2019-15903
CVE-2019-13713
CVE-2019-13714
CVE-2019-13715
CVE-2019-13716
CVE-2019-13717
CVE-2019-13718
CVE-2019-13719

You never have to pay for a vulnerability scanning and management software again.

Tired of paying a subscription 'per asset' or 'per IP'? Well you can officially cancel your current subscription. Mageni provides a free, open source and enterprise-ready vulnerability scanning and management platform which helps you to find, prioritize, remediate and manage your vulnerabilities. It is free and always will be.