Lucene search
K

15 matches found

Talos
Talos
added 2023/05/04 12:0 a.m.54 views

Google Chrome WebRTC RTCStatsCollector out of bounds memory access vulnerability

Talos Vulnerability Report TALOS-2023-1693 Google Chrome WebRTC RTCStatsCollector out of bounds memory access vulnerability May 4, 2023 CVE Number CVE-2023-0698 SUMMARY An out-of-bounds memory access vulnerability exists in stats reporting functionality of the WebRTC implementation in Google Chro...

8.8CVSS8.1AI score0.00649EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 3:22 a.m.2 views

SUSE CVE-2023-0136

Inappropriate implementation in in Fullscreen API in Google Chrome on Android prior to 109.0.5414.74 allowed a remote attacker to execute incorrect security UI via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS8.3AI score0.00647EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 3:22 a.m.3 views

SUSE CVE-2023-0141

Insufficient policy enforcement in CORS in Google Chrome prior to 109.0.5414.74 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.9AI score0.006EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2023/01/11 12:0 a.m.24 views

Google Chrome Security Update (stable-channel-update-for-desktop-2023-01) - Linux

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

8.8CVSS7.3AI score0.007EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/01/10 8:15 p.m.4 views

CVE-2023-0139

Insufficient validation of untrusted input in Downloads in Google Chrome on Windows prior to 109.0.5414.74 allowed a remote attacker to bypass download restrictions via a crafted HTML page. Chromium security severity: Low...

6.5CVSS5.9AI score0.00587EPSS
Exploits0References5
OSV
OSV
added 2023/01/10 8:15 p.m.2 views

DEBIAN-CVE-2023-0136

Inappropriate implementation in in Fullscreen API in Google Chrome on Android prior to 109.0.5414.74 allowed a remote attacker to execute incorrect security UI via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS8.1AI score0.00647EPSS
Exploits0References1
OSV
OSV
added 2023/01/10 8:15 p.m.1 views

DEBIAN-CVE-2023-0139

Insufficient validation of untrusted input in Downloads in Google Chrome on Windows prior to 109.0.5414.74 allowed a remote attacker to bypass download restrictions via a crafted HTML page. Chromium security severity: Low...

6.5CVSS7AI score0.00587EPSS
Exploits0References1
OSV
OSV
added 2023/01/10 8:15 p.m.1 views

DEBIAN-CVE-2023-0131

Inappropriate implementation in in iframe Sandbox in Google Chrome prior to 109.0.5414.74 allowed a remote attacker to bypass file download restrictions via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS6.9AI score0.00595EPSS
Exploits0References1
OSV
OSV
added 2023/01/10 8:15 p.m.1 views

UBUNTU-CVE-2023-0139

Insufficient validation of untrusted input in Downloads in Google Chrome on Windows prior to 109.0.5414.74 allowed a remote attacker to bypass download restrictions via a crafted HTML page. Chromium security severity: Low...

6.5CVSS7.3AI score0.00587EPSS
Exploits0References4
OSV
OSV
added 2023/01/10 8:15 p.m.2 views

UBUNTU-CVE-2023-0132

Inappropriate implementation in in Permission prompts in Google Chrome on Windows prior to 109.0.5414.74 allowed a remote attacker to force acceptance of a permission prompt via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS7.3AI score0.00496EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/01/10 12:0 a.m.6 views

Google Chrome 安全漏洞

Google Chrome is a web browser from Google, Inc. in the United States. A security vulnerability exists in versions of Google Chrome prior to 109.0.5414.74, which stems from an improper implementation in its Fullscreen API that allows remote attackers to spoof the contents of the Omnibox URL bar v...

6.5CVSS7.6AI score0.0056EPSS
Exploits0References8
Cvelist
Cvelist
added 2023/01/10 12:0 a.m.24 views

CVE-2023-0131

Inappropriate implementation in in iframe Sandbox in Google Chrome prior to 109.0.5414.74 allowed a remote attacker to bypass file download restrictions via a crafted HTML page. Chromium security severity: Medium...

6.7AI score0.00595EPSS
Exploits0References4
CVE
CVE
added 2023/01/10 12:0 a.m.219 views

CVE-2023-0141

Conforms to CVE-2023-0141: Google Chrome/Chromium suffered from insufficient CORS policy enforcement, enabling a remote attacker to leak cross-origin data via a crafted HTML page. Affected versions were prior to 109.0.5414.74. The Chrome stable update 109.0.5414.74+ includes fixes; the release no...

4.3CVSS3.6AI score0.006EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2023/01/10 12:0 a.m.3 views

Google Chrome 安全漏洞

Google Chrome is a web browser from Google, Inc. A security vulnerability exists in Google Chrome that stems from an improperly implemented permission prompt, which can be exploited by a remote attacker to bypass the Primary Source Permission Delegation via a crafted HTML page, and affects the...

6.5CVSS7.5AI score0.00573EPSS
Exploits0References8
CNNVD
CNNVD
added 2023/01/10 12:0 a.m.4 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser from Google, Inc. in the United States. A security vulnerability exists in versions of Google Chrome prior to 109.0.5414.74 that stems from its Overview mode where post-release reuse occurs allowing a remote attacker to convince a user that specific UI interactions...

8.8CVSS8.2AI score0.00604EPSS
Exploits0References7
Rows per page
Query Builder