5836 matches found
Microsoft Edge 安全漏洞
Microsoft Edge is a web browser from Microsoft Corporation USA that comes with systems after Windows 10. A security vulnerability exists in Microsoft Edge that stems from insufficient data validation...
Microsoft Edge (Chromium) < 129.0.2792.79 Multiple Vulnerabilities
The version of Microsoft Edge installed on the remote Windows host is prior to 129.0.2792.79. It is, therefore, affected by multiple vulnerabilities as referenced in the October 3, 2024 advisory. - Integer overflow in Layout. CVE-2024-7025 - Insufficient data validation in Mojo. CVE-2024-9369 -...
Google Chrome Security Update (stable-channel-update-for-desktop-2024-10) - Mac OS X
Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...
Google Chrome Security Update (stable-channel-update-for-desktop-2024-10) - Windows
Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...
Google Chrome < 129.0.6668.89 Multiple Vulnerabilities
The version of Google Chrome installed on the remote macOS host is prior to 129.0.6668.89. It is, therefore, affected by multiple vulnerabilities as referenced in the 202410stable-channel-update-for-desktop advisory. - This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromiu...
Google Chrome < 129.0.6668.89 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 129.0.6668.89. It is, therefore, affected by multiple vulnerabilities as referenced in the 202410stable-channel-update-for-desktop advisory. - This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests...
Important: kernel
Issue Overview: In the Linux kernel, the following vulnerability has been resolved: net: can: j1939: enhanced error handling for tightly received RTS messages in xtprxrtssessionnew CVE-2023-52887 In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: use timestam...
qt6-webengine -- Multiple vulnerabilities
Qt qtwebengine-chromium repo reports: Backports for 16 security bugs in Chromium: CVE-2024-9120: Use after free in Dawn CVE-2024-9122: Type Confusion in V8 CVE-2024-9123: Integer overflow in Skia CVE-2024-9369: Insufficient data validation in Mojo CVE-2024-9602: Type confusion in V8 CVE-2024-9603...
SUSE CVE-2024-7023
Insufficient data validation in Updater in Google Chrome prior to 128.0.6537.0 allowed a remote attacker to perform privilege escalation via a malicious file. Chromium security severity: Medium...
openSUSE 15 Security Update : chromium (openSUSE-SU-2024:0312-1)
The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0312-1 advisory. - Chromium 129.0.6668.58 stable released 2024-09-17 boo1230678 CVE-2024-8904: Type Confusion in V8 CVE-2024-8905: Inappropriate implementation in...
OPENSUSE-SU-2024:0311-1 Security update for chromium
This update for chromium fixes the following issues: Chromium 129.0.6668.58 stable released 2024-09-17 boo1230678 CVE-2024-8904: Type Confusion in V8 CVE-2024-8905: Inappropriate implementation in V8 CVE-2024-8906: Incorrect security UI in Downloads CVE-2024-8907: Insufficient data validation in...
CVE-2024-7023
Insufficient data validation in Updater in Google Chrome prior to 128.0.6537.0 allowed a remote attacker to perform privilege escalation via a malicious file. Chromium security severity: Medium...
CVE-2024-7023
Insufficient data validation in Updater in Google Chrome prior to 128.0.6537.0 allowed a remote attacker to perform privilege escalation via a malicious file. Chromium security severity: Medium...
CVE-2024-7023
Insufficient data validation in Updater in Google Chrome prior to 128.0.6537.0 allowed a remote attacker to perform privilege escalation via a malicious file. Chromium security severity: Medium...
CVE-2024-7023
CVE-2024-7023 : Google Chrome Updater has insufficient data validation in its Updater component, affecting Chrome versions prior to 128.0.6537.0. This enables a remote attacker to escalate privileges via a malicious file. Remediation: update Chrome to version 128.0.6537.0 or later. If additional ...
CVE-2024-7023
Insufficient data validation in Updater in Google Chrome prior to 128.0.6537.0 allowed a remote attacker to perform privilege escalation via a malicious file. Chromium security severity: Medium...
CVE-2018-20072
Insufficient data validation in PDF in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform out of bounds memory access via a crafted PDF file. Chromium security severity: Low...
CVE-2018-20072
Insufficient data validation in PDF in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform out of bounds memory access via a crafted PDF file. Chromium security severity: Low...
CVE-2018-20072
Insufficient data validation in PDF in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform out of bounds memory access via a crafted PDF file. Chromium security severity: Low...
CVE-2018-20072
CVE-2018-20072 affects Google Chrome/Chromium (PDF handling) via insufficient data validation in the PDF parser, enabling out-of-bounds memory access when processing a crafted PDF file. The issue is tied to Chromium-based builds prior to 73.0.3683.75. Associated references in the connected docume...