119 matches found
CVE-2023-0932
CVE-2023-0932: Use-after-free in WebRTC for Google Chrome on Windows prior to 110.0.5481.177. Root cause is heap corruption via crafted HTML page, with high impact (C/H/I/A). Affected product is Chrome/Chromium WebRTC component; remediation is to upgrade to Chrome 110.0.5481.177 or newer (or corr...
CVE-2023-0932
Use after free in WebRTC in Google Chrome on Windows prior to 110.0.5481.177 allowed a remote attacker who convinced the user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
KLA40223 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Prompts can be exploited to execute arbitrary code or cause...
CVE-2022-0932
creationtimestamp| type| source ---|---|--- 2022-03-11 18:14:47+00:00| seen| https://t.me/cibsecurity/38792...
CVE-2022-0932
CVE-2022-0932 affects saleor/saleor before version 3.1.2 due to missing authorization in the application. This could permit unauthorized access/actions that should require authorization. Remediation: upgrade to saleor 3.1.2 or later. The issue is documented across multiple sources (Red Hat, GH ad...
CVE-2022-0932 Missing Authorization in saleor/saleor
Missing Authorization in GitHub repository saleor/saleor prior to 3.1.2...
CVE-2022-0932 Missing Authorization in saleor/saleor
Missing Authorization in GitHub repository saleor/saleor prior to 3.1.2...
CVE-2021-0932
creationtimestamp| type| source ---|---|--- 2021-12-15 22:40:19+00:00| seen| https://t.me/cibsecurity/34094...
CVE-2021-0932
CVE-2021-0932 affects Android 10 via an unsafe PendingIntent in showNotification (NavigationModeController.java), enabling a possible confused deputy and local elevation of privilege with actions executed as the System UI, without user interaction. Public details consistently reference the same r...
SUSE SLES12 Security Update : nghttp2 (SUSE-SU-2021:0932-1) (Data Dribble) (Resource Loop)
This update for nghttp2 fixes the following issues : Security issues fixed : CVE-2020-11080: HTTP/2 Large Settings Frame DoS bsc1181358. CVE-2019-9513: Fixed HTTP/2 implementation that is vulnerable to resource loops, potentially leading to a denial of service bsc1146184. CVE-2019-9511: Fixed...
CVE-2015-0932
creationtimestamp| type| source ---|---|--- 2020-10-09 17:08:30+00:00| seen| MISP/6a1671d3-73c6-428b-9bae-305e59dcf452...
Microsoft SharePoint Remote Code Execution (CVE-2020-0932)
A remote code execution vulnerability exists in Microsoft SharePoint. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Security Updates for Microsoft SharePoint Server (April 2020)
The Microsoft SharePoint Server installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who...
CVE-2020-0932
A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0920, CVE-2020-0929, CVE-2020-0931, CVE-2020-0971,...
Remote code execution
A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0920, CVE-2020-0931, CVE-2020-0932, CVE-2020-0971,...
CVE-2020-0932
CVE-2020-0932 is a remote code execution vulnerability affecting Microsoft SharePoint. The vulnerability arises when the product fails to validate the source markup of an application package, enabling an attacker to run arbitrary code in the SharePoint context. Connected documents corroborate an ...
Description of the security update for SharePoint Foundation 2013: April 14, 2020
Description of the security update for SharePoint Foundation 2013: April 14, 2020 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see the...
CVE-2008-0932
diatheke.pl in The SWORD Project Diatheke 1.5.9 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the range parameter...
CVE-2019-0932
CVE-2019-0932 is an information-disclosure vulnerability in Skype for Android. An attacker could listen to a user’s Skype conversations by placing a call to an Android Skype client that is paired with a Bluetooth device. Exploitation requires the attacker to initiate a call to the target’s Skype ...
CVE-2019-0932
creationtimestamp| type| source ---|---|--- 2019-05-15 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=391...