95 matches found
CVE-2024-0810
Insufficient policy enforcement in DevTools in Google Chrome prior to 121.0.6167.85 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. Chromium security severity: Medium...
CVE-2024-0810
CVE-2024-0810 affects Google Chrome/Chromium DevTools. The issue is an insufficient policy enforcement vulnerability in DevTools that, when a user installs a crafted malicious extension, can leak cross-origin data. Impact is described as medium severity. Affected versions are Chrome/Chromium prio...
CVE-2024-0810
Insufficient policy enforcement in DevTools in Google Chrome prior to 121.0.6167.85 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. Chromium security severity: Medium...
CVE-2024-0810
Insufficient policy enforcement in DevTools in Google Chrome prior to 121.0.6167.85 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. Chromium security severity: Medium...
KLA63323 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, spoof user interface, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Integer underflow vulnerability in WebUI...
AlmaLinux 9 : firefox (ALSA-2023:0810)
The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:0810 advisory. - An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory writes via PKCS 12 Safe Bag attributes being...
Oracle Linux 9 : firefox (ELSA-2023-0810)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-0810 advisory. 102.8.0-2.0.1 - Updated homepages to use https Orabug: 34648274 102.8.0-2 - Update to 102.8.0 build2 102.8.0-1 - Update to 102.8.0 build1 Tenable has...
RHEL 9 : firefox (RHSA-2023:0810)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:0810 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...
SUSE CVE-2015-0810
Mozilla Firefox before 37.0 on OS X does not ensure that the cursor is visible, which allows remote attackers to conduct clickjacking attacks via a Flash object in conjunction with DIV elements associated with layered presentation, and crafted JavaScript code that interacts with an IMG element...
CVE-2023-0810
creationtimestamp| type| source ---|---|--- 2023-02-13 20:30:04+00:00| seen| https://t.me/cibsecurity/58017...
CVE-2021-0810
CVE-2021-0810 is listed in Android 12 release notes under Android runtime as an Elevation of Privilege (EoP) issue with a Moderate severity. It affects the Android runtime component; the Android bulletin assigns reference A-178821065 for this CVE. The entry indicates issues fixed as part of Andro...
CVE-2023-0810 Cross-site Scripting (XSS) - Stored in btcpayserver/btcpayserver
Cross-site Scripting XSS - Stored in GitHub repository btcpayserver/btcpayserver prior to 1.7.11...
CVE-2023-0810
CVE-2023-0810 is a stored Cross-site Scripting (XSS) vulnerability in btcpayserver/btcpayserver prior to version 1.7.11. The available documents identify the affected software and version range and state the remediation as upgrading to 1.7.11 or newer. No additional exploit specifics are provided...
CVE-2023-0810 Cross-site Scripting (XSS) - Stored in btcpayserver/btcpayserver
Cross-site Scripting XSS - Stored in GitHub repository btcpayserver/btcpayserver prior to 1.7.11...
CVE-2023-0810 Cross-site Scripting (XSS) - Stored in btcpayserver/btcpayserver
Cross-site Scripting XSS - Stored in GitHub repository btcpayserver/btcpayserver prior to 1.7.11...
Important: Red Hat Security Advisory: OpenShift Container Platform 4.10.4 security update
Red Hat OpenShift Container Platform release 4.10.4 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, whic...
SUSE SLES15: tomcat / tomcat-admin-webapps / tomcat-el-3_0-api / etc (SUSE-SU-2022:0810-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:0810-1 advisory. - Remove hard log4j dependency, as it is not required by tomcat itself bsc1196137 Tenable has extracted the preceding description block...
Samba < 2.0.5 Multiple Vulnerabilities
Samba is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:samba:samba"; ifdescription...
CVE-2020-0810
An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector or the Visual Studio Standard Collector allows file creation in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system.An attacker could then run a specially...
CVE-2020-0810
CVE-2020-0810 affects the Diagnostics Hub Standard Collector and the Visual Studio Standard Collector on Windows. The root cause is an elevation of privilege vulnerability allowing file creation in arbitrary locations, exploitable by a logged-on attacker who runs a crafted application; this could...