CVE-2020-16031

Insufficient data validation in UI in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

CVE-2020-16030

Insufficient data validation in Blink in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page...

CVE-2020-16032

CVE-2020-16032 affects Chromium/Google Chrome prior to 87.0.4280.66 in the sharing UI. The vulnerability is described as content spoofing in the sharing component, i.e., an incorrect security UI could misrepresent content shown to users. Affected products include Chromium/Chrome, with multiple up...

CVE-2020-16031

CVE-2020-16031 is a vulnerability in Chromium/Chrome related to the tab-Preview UI. Multiple connected sources (e.g., Arch Linux security advisory ASA-202011-11) describe it as a content spoofing issue in the tab preview component caused by an incorrect security UI, allowing a remote attacker to ...

CVE-2020-16032

Insufficient data validation in sharing in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

CVE-2020-16030

CVE-2020-16030 affects the Blink component in Chromium/Google Chrome prior to 87.0.4280.66. The issue is insufficient data validation in Blink, enabling a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. Publicly cited sources in the provided documents confirm C...

CVE-2020-16032

Insufficient data validation in sharing in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

CVE-2020-16030

Insufficient data validation in Blink in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page...

CVE-2020-16031

Insufficient data validation in UI in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

CVE-2020-16015

CVE-2020-16015 affects Google Chrome/Chromium, specifically the WASM component. The issue is described as insufficient data validation in WASM prior to 87.0.4280.66, which could allow a remote attacker to trigger heap corruption via a crafted HTML page. Multiple connected sources corroborate that...

CVE-2020-16015

Insufficient data validation in WASM in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

CVE-2021-1066

NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which input data is not validated, which may lead to unexpected consumption of resources, which in turn may lead to denial of service. This affects vGPU version 8.x prior to 8.6 and version 11.0 prior to 11.3...

CVE-2021-1066

NVIDIA vGPU software CVE-2021-1066 affects the vGPU manager/plugin where unvalidated input data can lead to unintended resource consumption and Denial of Service. Affected: vGPU 8.x (before 8.6) and 11.0 (before 11.3). Remediation: upgrade to vGPU software 11.3 or 8.6 or later, as per official se...

Google Chrome Insufficient Data Validation Vulnerability

Google Chrome is a web browser from Google, an American company. A data validation insufficiency vulnerability exists in networking in versions prior to Google Chrome 87.0.4280.141. No detailed vulnerability details are provided at this time...

Google Chrome 安全漏洞

Google Chrome is a web browser from Google, an American company. A data validation insufficiency vulnerability exists in networking in versions prior to Google Chrome 87.0.4280.141. No detailed vulnerability details are provided at this time...

Buffer Overflow Vulnerability in Cisco RV110W Products (CNVD-2021-05411)

The Cisco RV110W Wireless-N VPN Firewall is an enterprise-class router from Cisco USA. The Cisco RV110W product suffers from a buffer overflow vulnerability that originates from a program's failure to properly validate user data, which can be exploited by a remote attacker to execute arbitrary co...

Korzio Djv Command Injection Vulnerability

Korzio Djv is Korzio individual developers of a Javascript-based software used to dynamically verify the Json data format . A command injection vulnerability exists in versions prior to djv 2.1.4, which stems from the lack of proper validation of client-side data by the web application. An attack...

Mozilla Firefox 资源管理错误漏洞

Mozilla Firefox and Mozilla Firefox ESR are both products of the Mozilla Foundation in the U.S. Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox web browser. Mozilla Firefox suffers from a denial of service vulnerability that originates...

chromium -- multiple vulnerabilities

Chrome Releases reports: This release includes 16 security fixes, including: 1148749 High CVE-2021-21106: Use after free in autofill. Reported by Weipeng Jiang @Krace from Codesafe Team of Legendsec at Qi'anxin Group on 2020-11-13 1153595 High CVE-2021-21107: Use after free in drag and drop...

Google Android Buffer Error Vulnerability

Google Android is a Linux-based open source operating system from the USGoogleOpen Handheld Alliance Google. Google Android OS suffers from a buffer error vulnerability that originates when a networked system or product performs an operation in memory without properly validating data boundaries,...