5836 matches found
CVE-2023-7012
Insufficient data validation in Permission Prompts in Google Chrome prior to 117.0.5938.62 allowed an attacker who convinced a user to install a malicious app to potentially perform a sandbox escape via a malicious file. Chromium security severity: Medium...
CVE-2023-7012
Insufficient data validation in Permission Prompts in Google Chrome prior to 117.0.5938.62 allowed an attacker who convinced a user to install a malicious app to potentially perform a sandbox escape via a malicious file. Chromium security severity: Medium...
CVE-2023-7012
Insufficient data validation in Permission Prompts in Google Chrome prior to 117.0.5938.62 allowed an attacker who convinced a user to install a malicious app to potentially perform a sandbox escape via a malicious file. Chromium security severity: Medium...
CVE-2023-7012
Insufficient data validation in Permission Prompts in Google Chrome prior to 117.0.5938.62 allowed an attacker who convinced a user to install a malicious app to potentially perform a sandbox escape via a malicious file. Chromium security severity: Medium...
CVE-2023-7012
Insufficient data validation in Permission Prompts in Google Chrome prior to 117.0.5938.62 allowed an attacker who convinced a user to install a malicious app to potentially perform a sandbox escape via a malicious file. Chromium security severity: Medium...
CVE-2024-3175
Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.62 allowed a remote attacker to perform privilege escalation via a crafted Chrome Extension. Chromium security severity: Low...
CVE-2024-3173
Insufficient data validation in Updater in Google Chrome prior to 120.0.6099.62 allowed a remote attacker to perform OS-level privilege escalation via a malicious file. Chromium security severity: High...
CVE-2024-3172
Insufficient data validation in DevTools in Google Chrome prior to 121.0.6167.85 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. Chromium security severity: High...
CVE-2024-3172
Insufficient data validation in DevTools in Google Chrome prior to 121.0.6167.85 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. Chromium security severity: High...
CVE-2024-3175
Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.62 allowed a remote attacker to perform privilege escalation via a crafted Chrome Extension. Chromium security severity: Low...
CVE-2024-3173
Insufficient data validation in Updater in Google Chrome prior to 120.0.6099.62 allowed a remote attacker to perform OS-level privilege escalation via a malicious file. Chromium security severity: High...
CVE-2024-3173
Insufficient data validation in Updater in Google Chrome prior to 120.0.6099.62 allowed a remote attacker to perform OS-level privilege escalation via a malicious file. Chromium security severity: High...
CVE-2024-3175
Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.62 allowed a remote attacker to perform privilege escalation via a crafted Chrome Extension. Chromium security severity: Low...
Google Chrome 安全漏洞
Google Chrome is a web browser from Google, an American company. Google Chrome has a security vulnerability that stems from an insufficient data validation issue found in the Permission Prompts module. No details of the vulnerability are provided at this time...
CVE-2024-39883
Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. If a target visits a malicious page or opens a malicious file an attacker can leverage this vulnerability to execute code in the context of the current...
CVE-2024-39881
Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can result in a memory corruption condition. If a target visits a malicious page or opens a malicious file an attacker can leverage this vulnerability to execute code in the context of the current process...
PT-2024-28707 · Delta Electronics · Cncsoft-G2
Name of the Vulnerable Software and Affected Versions: Delta Electronics CNCSoft-G2 affected versions not specified Description: The issue is related to a lack of proper validation of user-supplied data, which can result in a memory corruption condition. This can be exploited if a target visits a...
PT-2024-28709 · Delta Electronics · Cncsoft-G2
Name of the Vulnerable Software and Affected Versions: Delta Electronics CNCSoft-G2 affected versions not specified Description: The issue is related to a lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. This can be exploited i...
The vulnerability of the software for monitoring and analyzing network traffic in industrial networks, SINEC Traffic Analyzer, arises from insufficient validation of input data. This allows attackers to gain unauthorized access to protected information.
The vulnerability of the SINEC Traffic Analyzer software for monitoring and analyzing network traffic in industrial networks is related to insufficient verification of input data. Exploiting this vulnerability could allow an unauthorized attacker to gain unauthorized access to protected informati...
The vulnerability of the `filter_var` function in the PHP programming language allows attackers to replace URLs with erroneous data.
The vulnerability of the filterVar function in the PHP programming language is related to insufficient validation of data authenticity. Exploiting this vulnerability could allow an attacker to substitute URLs with erroneous data remotely...