5838 matches found
CVE-2021-21123
CVE-2021-21123 is a data validation vulnerability in Google Chrome’s File System API (Chromium) prior to 88.0.4324.96. The issue allows a remote attacker to bypass filesystem restrictions via a crafted HTML page due to insufficient data validation in the File System API/File System component. The...
CVE-2021-21123
Insufficient data validation in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page...
CVE-2021-21123
Insufficient data validation in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page...
CVE-2021-21123
Insufficient data validation in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page...
CVE-2021-21118
CVE-2021-21118 is a data validation issue in the V8 JavaScript engine of Chromium-based browsers. The connected advisories and Debian/Arch Fedora entries confirm the vulnerability stems from insufficient data validation in V8 prior to version 88.0.4324.96, potentially enabling out-of-bounds memor...
CVE-2021-21118
Insufficient data validation in V8 in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page...
CVE-2021-21118
Insufficient data validation in V8 in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page...
Horner Automation Cscape CSP File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Horner Automation Cscape. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsi...
The vulnerability of the SNMPv3 implementation of the micro-programming software for Cisco SD-WAN vBond Orchestrator, Cisco SD-WAN vEdge Cloud Routers, Cisco SD-WAN vEdge Routers, Cisco SD-WAN vSmart Controller, and the centralized network management system Cisco SD-WAN vManage allows a attacker to cause service interruptions.
The vulnerability of the SNMPv3 implementation of the micro-programming software for Cisco SD-WAN vBond Orchestrator, Cisco SD-WAN vEdge Cloud Routers, Cisco SD-WAN vEdge Routers, Cisco SD-WAN vSmart Controller, and the centralized network management system Cisco SD-WAN vManage exists due to...
Intel Ethernet Controllers Input Validation Error Vulnerability
Intel Ethernet Controllers is an Ethernet controller from Intel Corporation USA. An input validation error vulnerability exists in the Intel 722 Ethernet Controllers that arises from a network system or product that does not properly validate input data...
Foxit Studio Photo 缓冲区错误漏洞
Foxit Studio Photo is a set of image editing software from the Chinese company Foxit Foxit. A remote code execution vulnerability exists in the handling of EPS files in Foxit Studio Photo 3.6.6.930 and earlier versions. The vulnerability stems from a lack of proper validation of user-supplied dat...
B2evolution Cms Cross-Site Scripting Vulnerability
b2evolution is a community content management system based on PHP and MySQL. A cross-site scripting vulnerability exists in B2evolution Cms, which stems from a lack of proper validation of client-side data by the WEB application. An attacker can exploit this vulnerability to execute client-side...
Foxit Studio Photo 缓冲区错误漏洞
Foxit Studio Photo is a set of image editing software from the Chinese company Foxit Foxit. A remote code execution vulnerability exists in the handling of NEF files in Foxit Studio Photo 3.6.6.930 and earlier versions. The vulnerability stems from a lack of proper validation of user-supplied dat...
Foxit Studio Photo 缓冲区错误漏洞
Foxit Studio Photo is a set of image editing software from the Chinese company Foxit Foxit. A remote code execution vulnerability exists in the handling of CR2 files in Foxit Studio Photo 3.6.6.930 and earlier versions. The vulnerability stems from a lack of proper validation of user-supplied dat...
Foxit Studio Photo 缓冲区错误漏洞
Foxit Studio Photo is a set of image editing software from the Chinese company Foxit Foxit. An information disclosure vulnerability exists in the handling of CMP files in Foxit Studio Photo 3.6.6.930 and earlier versions. The vulnerability stems from a lack of proper validation of user-supplied...
Tufin SecureTrack R20-2 GA Cross-Site Scripting Vulnerability
USA Tufin SecureTrack is a firewall policy management platform from Tufin USA USA. A cross-site scripting vulnerability exists in the Tufin SecureTrack R20-2 GA, which originates from a web application that lacks proper validation of client data. An attacker can exploit this vulnerability to...
Foxit Studio Photo 缓冲区错误漏洞
Foxit Studio Photo is a set of image editing software from the Chinese company Foxit Foxit. An information disclosure vulnerability exists in the handling of ARW files in Foxit Studio Photo 3.6.6.930 and earlier versions. The vulnerability stems from a lack of proper validation of user-supplied...
Debian: Security Advisory (DSA-4846-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
The vulnerability of the file system driver in the Windows operating system allows a hacker to gain unauthorized access to protected information.
The vulnerability of the file system driver filter in the Windows operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
GotoAndPlay SNC SmartFoxServer Cross-Site Scripting Vulnerability
GotoAndPlay SNC SmartFoxServer is a development tool from GotoAndPlay SNC, USA. It provides rapid development of multiplayer games and applications. A cross-site scripting vulnerability exists in SmartFoxServer version 2.17.0. The vulnerability stems from a lack of proper validation of client-sid...