5836 matches found
Google Chrome Number Error Vulnerability (CNVD-2024-06231)
Google Chrome is a web browser from Google, an American company. A numeric error vulnerability exists in versions prior to Google Chrome 120.0.6099.216, which stems from insufficient data validation. An attacker can exploit the vulnerability to install malicious extensions via specially crafted...
Chromium: CVE-2024-0333 Insufficient data validation in Extensions
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Microsoft Edge (Chromium) < 120.0.2336.0 Multiple Vulnerabilities
The version of Microsoft Edge installed on the remote Windows host is prior to 120.0.2336.0. It is, therefore, affected by multiple vulnerabilities as referenced in the January 11, 2024 advisory. - Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.216 allowed an...
TOTOLINK N350RT Buffer Overflow Vulnerability
The TOTOLINK N350RT is a small home router from China's Gion Electronics TOTOLINK. The TOTOLINK N350RT suffers from a buffer overflow vulnerability, which originates from the parameter v33 of the function main in /cgi-bin/cstecgi.cgi?action=login&flag=1 that fails to correctly validate the length...
Google Chrome Security Update (stable-channel-update-for-desktop_9-2024-01) - Windows
Google Chrome is prone to a data validation vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome";...
Google Chrome Security Update (stable-channel-update-for-desktop_9-2024-01) - Linux
Google Chrome is prone to a data validation vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome";...
Google Chrome Security Update (stable-channel-update-for-desktop_9-2024-01) - Mac OS X
Google Chrome is prone to a data validation vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome";...
CVE-2024-0333
Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.216 allowed an attacker in a privileged network position to install a malicious extension via a crafted HTML page. Chromium security severity: High...
CVE-2024-0333
Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.216 allowed an attacker in a privileged network position to install a malicious extension via a crafted HTML page. Chromium security severity: High...
Input validation
Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.216 allowed an attacker in a privileged network position to install a malicious extension via a crafted HTML page. Chromium security severity: High...
CVE-2024-0333
Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.216 allowed an attacker in a privileged network position to install a malicious extension via a crafted HTML page. Chromium security severity: High...
CVE-2024-0333
CVE-2024-0333 involves Google Chrome/Chromium where the vulnerability resides in the Extensions subsystem. The root cause is insufficient data validation in Extensions, allowing a crafted HTML page to cause installation of a malicious extension when the user is in a privileged network position. A...
CVE-2024-0333
Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.216 allowed an attacker in a privileged network position to install a malicious extension via a crafted HTML page. Chromium security severity: High...
CVE-2024-0333
Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.216 allowed an attacker in a privileged network position to install a malicious extension via a crafted HTML page. Chromium security severity: High...
Cisco Unity Connection Unauthenticated Arbitrary File Upload Vulnerability
A vulnerability in the web-based management interface of Cisco Unity Connection could allow an unauthenticated, remote attacker to upload arbitrary files to an affected system and execute commands on the underlying operating system. This vulnerability is due to a lack of authentication in a...
CVE-2024-0333
Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.216 allowed an attacker in a privileged network position to install a malicious extension via a crafted HTML page. Chromium security severity: High...
FreeBSD : chromium -- security fix (ec8e4040-afcd-11ee-86bb-a8a1599412c6)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the ec8e4040-afcd-11ee-86bb-a8a1599412c6 advisory. - Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.216 allowed an attack...
Google Chrome < 120.0.6099.217 Vulnerability
The version of Google Chrome installed on the remote Windows host is prior to 120.0.6099.217. It is, therefore, affected by a vulnerability as referenced in the 202401stable-channel-update-for-desktop9 advisory. - Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.216...
KLA62930 DoS vulnerability in Google Chrome
Data validation vulnerability was found in Google Chrome. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Chrome Releases: Stable Channel Update for Desktop Related products Google-Chrome CVE list CVE-2024-0333 high Solution Update to the latest...
Stable Channel Update for Desktop
The Stable channel has been updated to 120.0.6099.216 for Mac,Linux and 120.0.6099.216/217 to Windows which will roll out over the coming days/weeks. A full list of changes in this build is available in the Log. The Extended Stable channel has been updated to 120.0.6099.216 for Mac and...