5836 matches found
CVE-2024-42097
A missed validation flaw was found in the Linux Kernel's MIDI sequencer and router support functionality. This issue could allow a local user to crash the system...
PDF-XChange Editor PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...
Google Chrome Security Update (stable-channel-update-for-desktop_30-2024-07) - Mac OS X
Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...
Google Chrome < 127.0.6533.88 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 127.0.6533.88. It is, therefore, affected by multiple vulnerabilities as referenced in the 202407stable-channel-update-for-desktop30 advisory. - Insufficient data validation in Dawn in Google Chrome on Android prior to...
chromium -- multiple security fixes
Chrome Releases reports: This update includes 3 security fixes: 353034820 Critical CVE-2024-6990: Uninitialized Use in Dawn. Reported by gelatin dessert on 2024-07-15 352872238 High CVE-2024-7255: Out of bounds read in WebTransport. Reported by Marten Richter on 2024-07-13 354748060 High...
Google Chrome < 127.0.6533.88 Multiple Vulnerabilities
The version of Google Chrome installed on the remote macOS host is prior to 127.0.6533.88. It is, therefore, affected by multiple vulnerabilities as referenced in the 202407stable-channel-update-for-desktop30 advisory. - Insufficient data validation in Dawn in Google Chrome on Android prior to...
CVE-2024-42097
In the Linux kernel, the following vulnerability has been resolved: ALSA: emux: improve patch ioctl data validation In loaddata, make the validation of and skipping over the main info block match that in loadguspatch. In loadguspatch, add checking that the specified patch length matches the...
DEBIAN-CVE-2024-42097
In the Linux kernel, the following vulnerability has been resolved: ALSA: emux: improve patch ioctl data validation In loaddata, make the validation of and skipping over the main info block match that in loadguspatch. In loadguspatch, add checking that the specified patch length matches the...
CVE-2024-42097
In the Linux kernel, the following vulnerability has been resolved: ALSA: emux: improve patch ioctl data validation In loaddata, make the validation of and skipping over the main info block match that in loadguspatch. In loadguspatch, add checking that the specified patch length matches the...
CVE-2024-42097 ALSA: emux: improve patch ioctl data validation
In the Linux kernel, the following vulnerability has been resolved: ALSA: emux: improve patch ioctl data validation In loaddata, make the validation of and skipping over the main info block match that in loadguspatch. In loadguspatch, add checking that the specified patch length matches the...
CVE-2024-42097 ALSA: emux: improve patch ioctl data validation
In the Linux kernel, the following vulnerability has been resolved: ALSA: emux: improve patch ioctl data validation In loaddata, make the validation of and skipping over the main info block match that in loadguspatch. In loadguspatch, add checking that the specified patch length matches the...
Linux Kernel Netfilter Conntrack Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Linux Kernel. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the DCCP protocol. The issue results from the lack of proper...
PT-2024-37881 · Irfan Skiljan · Irfanview
Name of the Vulnerable Software and Affected Versions: IrfanView affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this issue, where the target must visit a...
The vulnerability of the Microsoft Outlook email client, related to insufficient validation of input data, allows a hacker to execute arbitrary code.
The vulnerability of the Microsoft Outlook email client is related to insufficient validation of entered data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
Unspecified Vulnerability in Google Chrome (CNVD-2024-35099)
Google Chrome is a web browser from Google, an American company. Google Chrome has a security vulnerability that stems from an insufficient data validation issue found in the Permission Prompts module. No details of the vulnerability are provided at this time...
CVE-2024-3175
Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.62 allowed a remote attacker to perform privilege escalation via a crafted Chrome Extension. Chromium security severity: Low...
CVE-2024-3173
Insufficient data validation in Updater in Google Chrome prior to 120.0.6099.62 allowed a remote attacker to perform OS-level privilege escalation via a malicious file. Chromium security severity: High...
CVE-2024-3175
Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.62 allowed a remote attacker to perform privilege escalation via a crafted Chrome Extension. Chromium security severity: Low...
CVE-2024-3173
Insufficient data validation in Updater in Google Chrome prior to 120.0.6099.62 allowed a remote attacker to perform OS-level privilege escalation via a malicious file. Chromium security severity: High...
CVE-2024-3172
Insufficient data validation in DevTools in Google Chrome prior to 121.0.6167.85 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. Chromium security severity: High...