Lucene search
+L

95 matches found

NVD
NVD
added 2024/01/24 12:15 a.m.30 views

CVE-2024-0810

Insufficient policy enforcement in DevTools in Google Chrome prior to 121.0.6167.85 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. Chromium security severity: Medium...

4.3CVSS5.6AI score0.0035EPSS
Exploits0References4
CVE
CVE
added 2024/01/23 11:53 p.m.155 views

CVE-2024-0810

CVE-2024-0810 affects Google Chrome/Chromium DevTools. The issue is an insufficient policy enforcement vulnerability in DevTools that, when a user installs a crafted malicious extension, can leak cross-origin data. Impact is described as medium severity. Affected versions are Chrome/Chromium prio...

4.3CVSS5.4AI score0.0035EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2024/01/23 11:53 p.m.38 views

CVE-2024-0810

Insufficient policy enforcement in DevTools in Google Chrome prior to 121.0.6167.85 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. Chromium security severity: Medium...

4.3CVSS4.4AI score0.0035EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2024/01/23 11:53 p.m.62 views

CVE-2024-0810

Insufficient policy enforcement in DevTools in Google Chrome prior to 121.0.6167.85 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. Chromium security severity: Medium...

4.3CVSS5.8AI score0.0035EPSS
Exploits0
Kaspersky
Kaspersky
added 2024/01/23 12:0 a.m.45 views

KLA63323 Multiple vulnerabilities in Google Chrome

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, spoof user interface, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Integer underflow vulnerability in WebUI...

9.8CVSS8.7AI score0.00579EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2023/02/23 12:0 a.m.47 views

AlmaLinux 9 : firefox (ALSA-2023:0810)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:0810 advisory. - An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory writes via PKCS 12 Safe Bag attributes being...

8.8CVSS7.8AI score0.00817EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2023/02/21 12:0 a.m.45 views

Oracle Linux 9 : firefox (ELSA-2023-0810)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-0810 advisory. 102.8.0-2.0.1 - Updated homepages to use https Orabug: 34648274 102.8.0-2 - Update to 102.8.0 build2 102.8.0-1 - Update to 102.8.0 build1 Tenable has...

8.8CVSS7.4AI score0.00817EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2023/02/20 12:0 a.m.38 views

RHEL 9 : firefox (RHSA-2023:0810)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:0810 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

8.8CVSS7.6AI score0.00737EPSS
Exploits0References24
SUSE CVE
SUSE CVE
added 2023/02/15 5:22 a.m.5 views

SUSE CVE-2015-0810

Mozilla Firefox before 37.0 on OS X does not ensure that the cursor is visible, which allows remote attackers to conduct clickjacking attacks via a Flash object in conjunction with DIV elements associated with layered presentation, and crafted JavaScript code that interacts with an IMG element...

4.3CVSS8.6AI score0.0147EPSS
Exploits0References3
Circl
Circl
added 2023/02/13 8:30 p.m.11 views

CVE-2023-0810

creationtimestamp| type| source ---|---|--- 2023-02-13 20:30:04+00:00| seen| https://t.me/cibsecurity/58017...

8.8CVSS6.8AI score0.00556EPSS
Exploits1References1
CVE
CVE
added 2023/02/13 4:17 p.m.15 views

CVE-2021-0810

CVE-2021-0810 is listed in Android 12 release notes under Android runtime as an Elevation of Privilege (EoP) issue with a Moderate severity. It affects the Android runtime component; the Android bulletin assigns reference A-178821065 for this CVE. The entry indicates issues fixed as part of Andro...

8.7AI score
Exploits0
Cvelist
Cvelist
added 2023/02/13 12:0 a.m.30 views

CVE-2023-0810 Cross-site Scripting (XSS) - Stored in btcpayserver/btcpayserver

Cross-site Scripting XSS - Stored in GitHub repository btcpayserver/btcpayserver prior to 1.7.11...

8.8CVSS5.5AI score0.00556EPSS
Exploits1References2
CVE
CVE
added 2023/02/13 12:0 a.m.44 views

CVE-2023-0810

CVE-2023-0810 is a stored Cross-site Scripting (XSS) vulnerability in btcpayserver/btcpayserver prior to version 1.7.11. The available documents identify the affected software and version range and state the remediation as upgrading to 1.7.11 or newer. No additional exploit specifics are provided...

8.8CVSS5.7AI score0.00556EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/02/13 12:0 a.m.6 views

CVE-2023-0810 Cross-site Scripting (XSS) - Stored in btcpayserver/btcpayserver

Cross-site Scripting XSS - Stored in GitHub repository btcpayserver/btcpayserver prior to 1.7.11...

8.8CVSS6AI score0.00556EPSS
Exploits1References2
OSV
OSV
added 2023/02/13 12:0 a.m.15 views

CVE-2023-0810 Cross-site Scripting (XSS) - Stored in btcpayserver/btcpayserver

Cross-site Scripting XSS - Stored in GitHub repository btcpayserver/btcpayserver prior to 1.7.11...

8.8CVSS7.6AI score0.00556EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2022/03/15 11:18 p.m.54 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.10.4 security update

Red Hat OpenShift Container Platform release 4.10.4 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, whic...

9CVSS8AI score0.18561EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/03/12 12:0 a.m.12 views

SUSE SLES15: tomcat / tomcat-admin-webapps / tomcat-el-3_0-api / etc (SUSE-SU-2022:0810-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:0810-1 advisory. - Remove hard log4j dependency, as it is not required by tomcat itself bsc1196137 Tenable has extracted the preceding description block...

5.9AI score
Exploits0References2
OpenVAS
OpenVAS
added 2021/09/24 12:0 a.m.19 views

Samba < 2.0.5 Multiple Vulnerabilities

Samba is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:samba:samba"; ifdescription...

7.5AI score
Exploits0References1
NVD
NVD
added 2020/03/12 4:15 p.m.23 views

CVE-2020-0810

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector or the Visual Studio Standard Collector allows file creation in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system.An attacker could then run a specially...

7.8CVSS8.7AI score0.01002EPSS
Exploits0References1
CVE
CVE
added 2020/03/12 3:48 p.m.128 views

CVE-2020-0810

CVE-2020-0810 affects the Diagnostics Hub Standard Collector and the Visual Studio Standard Collector on Windows. The root cause is an elevation of privilege vulnerability allowing file creation in arbitrary locations, exploitable by a logged-on attacker who runs a crafted application; this could...

7.8CVSS8.6AI score0.01002EPSS
Exploits0References1Affected Software6
Rows per page
Query Builder