Lucene search
+L

119 matches found

CVE
CVE
added 2023/02/22 7:54 p.m.144 views

CVE-2023-0932

CVE-2023-0932: Use-after-free in WebRTC for Google Chrome on Windows prior to 110.0.5481.177. Root cause is heap corruption via crafted HTML page, with high impact (C/H/I/A). Affected product is Chrome/Chromium WebRTC component; remediation is to upgrade to Chrome 110.0.5481.177 or newer (or corr...

8.8CVSS8.9AI score0.00579EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2023/02/22 7:54 p.m.36 views

CVE-2023-0932

Use after free in WebRTC in Google Chrome on Windows prior to 110.0.5481.177 allowed a remote attacker who convinced the user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS9.7AI score0.00579EPSS
Exploits0
Kaspersky
Kaspersky
added 2023/02/22 12:0 a.m.83 views

KLA40223 Multiple vulnerabilities in Google Chrome

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Prompts can be exploited to execute arbitrary code or cause...

8.8CVSS10AI score0.00668EPSS
Exploits0References3
Circl
Circl
added 2022/03/11 6:14 p.m.9 views

CVE-2022-0932

creationtimestamp| type| source ---|---|--- 2022-03-11 18:14:47+00:00| seen| https://t.me/cibsecurity/38792...

6.5CVSS6.2AI score0.00994EPSS
Exploits1References1
CVE
CVE
added 2022/03/11 12:0 a.m.124 views

CVE-2022-0932

CVE-2022-0932 affects saleor/saleor before version 3.1.2 due to missing authorization in the application. This could permit unauthorized access/actions that should require authorization. Remediation: upgrade to saleor 3.1.2 or later. The issue is documented across multiple sources (Red Hat, GH ad...

6.5CVSS6.4AI score0.00994EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/03/11 12:0 a.m.30 views

CVE-2022-0932 Missing Authorization in saleor/saleor

Missing Authorization in GitHub repository saleor/saleor prior to 3.1.2...

6.5CVSS6.7AI score0.00994EPSS
Exploits1References2
OSV
OSV
added 2022/03/11 12:0 a.m.20 views

CVE-2022-0932 Missing Authorization in saleor/saleor

Missing Authorization in GitHub repository saleor/saleor prior to 3.1.2...

6.5CVSS6.6AI score0.00994EPSS
Exploits1References4
Circl
Circl
added 2021/12/15 10:40 p.m.6 views

CVE-2021-0932

creationtimestamp| type| source ---|---|--- 2021-12-15 22:40:19+00:00| seen| https://t.me/cibsecurity/34094...

7.8CVSS7.5AI score0.00121EPSS
Exploits0References1
CVE
CVE
added 2021/12/15 6:5 p.m.107 views

CVE-2021-0932

CVE-2021-0932 affects Android 10 via an unsafe PendingIntent in showNotification (NavigationModeController.java), enabling a possible confused deputy and local elevation of privilege with actions executed as the System UI, without user interaction. Public details consistently reference the same r...

7.8CVSS7.6AI score0.00121EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/03/26 12:0 a.m.66 views

SUSE SLES12 Security Update : nghttp2 (SUSE-SU-2021:0932-1) (Data Dribble) (Resource Loop)

This update for nghttp2 fixes the following issues : Security issues fixed : CVE-2020-11080: HTTP/2 Large Settings Frame DoS bsc1181358. CVE-2019-9513: Fixed HTTP/2 implementation that is vulnerable to resource loops, potentially leading to a denial of service bsc1146184. CVE-2019-9511: Fixed...

7.8CVSS6.8AI score0.82017EPSS
Exploits0References22
Circl
Circl
added 2020/10/09 5:8 p.m.13 views

CVE-2015-0932

creationtimestamp| type| source ---|---|--- 2020-10-09 17:08:30+00:00| seen| MISP/6a1671d3-73c6-428b-9bae-305e59dcf452...

10CVSS7AI score0.05551EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2020/05/10 12:0 a.m.19 views

Microsoft SharePoint Remote Code Execution (CVE-2020-0932)

A remote code execution vulnerability exists in Microsoft SharePoint. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.5CVSS5.7AI score0.31213EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/04/16 12:0 a.m.112 views

Security Updates for Microsoft SharePoint Server (April 2020)

The Microsoft SharePoint Server installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who...

9.3CVSS7.4AI score0.31213EPSS
Exploits3References34
NVD
NVD
added 2020/04/15 3:15 p.m.21 views

CVE-2020-0932

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0920, CVE-2020-0929, CVE-2020-0931, CVE-2020-0971,...

8.8CVSS8.9AI score0.31213EPSS
Exploits0References1
Prion
Prion
added 2020/04/15 3:15 p.m.25 views

Remote code execution

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0920, CVE-2020-0931, CVE-2020-0932, CVE-2020-0971,...

6.5CVSS8.8AI score0.31213EPSS
Exploits0References1Affected Software3
CVE
CVE
added 2020/04/15 3:12 p.m.328 views

CVE-2020-0932

CVE-2020-0932 is a remote code execution vulnerability affecting Microsoft SharePoint. The vulnerability arises when the product fails to validate the source markup of an application package, enabling an attacker to run arbitrary code in the SharePoint context. Connected documents corroborate an ...

8.8CVSS8.3AI score0.31213EPSS
Exploits0References1Affected Software3
Microsoft KB
Microsoft KB
added 2020/04/14 7:0 a.m.103 views

Description of the security update for SharePoint Foundation 2013: April 14, 2020

Description of the security update for SharePoint Foundation 2013: April 14, 2020 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see the...

8.8CVSS6.4AI score0.31213EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2019/10/04 9:50 p.m.12 views

CVE-2008-0932

diatheke.pl in The SWORD Project Diatheke 1.5.9 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the range parameter...

7.5CVSS7.9AI score0.02901EPSS
Exploits0References3
CVE
CVE
added 2019/05/16 6:17 p.m.91 views

CVE-2019-0932

CVE-2019-0932 is an information-disclosure vulnerability in Skype for Android. An attacker could listen to a user’s Skype conversations by placing a call to an Android Skype client that is paired with a Bluetooth device. Exploitation requires the attacker to initiate a call to the target’s Skype ...

5.9CVSS6.3AI score0.04937EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2019/05/15 4:0 a.m.7 views

CVE-2019-0932

creationtimestamp| type| source ---|---|--- 2019-05-15 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=391...

5.9CVSS6.8AI score0.04937EPSS
Exploits0References1
Rows per page
Query Builder