CVE-2025-11117 Tenda CH22 GstDhcpSetSer formWrlExtraGet buffer overflow

A vulnerability was determined in Tenda CH22 1.0.0.1. This vulnerability affects the function formWrlExtraGet of the file /goform/GstDhcpSetSer. This manipulation of the argument dips causes buffer overflow. The attack is possible to be carried out remotely. The exploit has been publicly disclose...

CVE-2020-11117

u'In the lbd service, an external user can issue a specially crafted debug command to overwrite arbitrary files with arbitrary content resulting in remote code execution.' in Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Wired Infrastructure and Networking in IPQ4019, IPQ6018,...

Linux Distros Unpatched Vulnerability : CVE-2024-11117

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in FileSystem in Google Chrome prior to 131.0.6778.69 allowed a remote attacker to bypass filesystem restrictions via a crafted HTM...

openSUSE 15 Security Update : chromium (openSUSE-SU-2024:0374-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0374-1 advisory. Chromium 131.0.6778.69 stable released 2024-11-12 boo1233311 CVE-2024-11110: Inappropriate implementation in Blink. CVE-2024-11111: Inappropriate...

openSUSE 15 Security Update : chromium (openSUSE-SU-2024:0373-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0373-1 advisory. Chromium 131.0.6778.69 stable released 2024-11-12 boo1233311 CVE-2024-11110: Inappropriate implementation in Blink. CVE-2024-11111: Inappropriate...

qt6-webengine -- Multiple vulnerabilities

Qt qtwebengine-chromium repo reports: Backports for 5 security bugs in Chromium: CVE-2024-11110: Inappropriate implementation in Blink CVE-2024-11112: Use after free in Media CVE-2024-11114: Inappropriate implementation in Views CVE-2024-11116: Inappropriate implementation in Paint CVE-2024-11117...

Fedora 40 : chromium (2024-292aa2c246)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-292aa2c246 advisory. Update to 131.0.6778.85 High CVE-2024-11395: Type Confusion in V8 High CVE-2024-11110: Inappropriate implementation in Blink Medium CVE-2024-11111:...

Fedora 41 : chromium (2024-582d2a7648)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-582d2a7648 advisory. Update to 131.0.6778.85 High CVE-2024-11395: Type Confusion in V8 High CVE-2024-11110: Inappropriate implementation in Blink Medium CVE-2024-11111:...

Debian: Security Advisory (DSA-5817-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Advisory (openSUSE-SU-2024:0373-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Chromium: CVE-2024-11117 Inappropriate implementation in FileSystem

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

CVE-2024-11117 vulnerabilities

Vulnerabilities for packages: chromium...

CVE-2024-11117

Inappropriate implementation in FileSystem in Google Chrome prior to 131.0.6778.69 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. Chromium security severity: Low...

KLA77062 Multiple vulnerabilities in Google Chrome

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Inappropriate implementation vulnerability in Blink can be...

Stable Channel Update for Desktop

The Chrome team is delighted to announce the promotion of Chrome 131 to the stable channel for Windows, Mac and Linux. This will roll out over the coming days/weeks. Chrome 131.0.6778.69 Linux 131.0.6778.69/.70 Windows, Mac contains a number of fixes and improvements -- a list of changes is...

Qualcomm Snapdragon Remote Code Execution (CVE-2020-11117)

A remote code execution vulnerability exists in Qualcomm Snapdragon. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

Synology SRM lbd service Command Execution Vulnerability

Summary An exploitable command execution vulnerability exists in the lbd service functionality of Qualcomm lbd 1.1, as present in Synology SRM 1.2.3 RT2600ac 8017-5. A specially crafted debug command can overwrite arbitrary files with controllable content, resulting in remote code execution. An...

CVE-2020-11117

Summary: CVE-2020-11117 is a remote code execution in the Qualcomm lbd service used by Snapdragon-connected devices and Synology SRM. An unauthenticated external user can issue a crafted debug command to overwrite arbitrary files with controllable content, leading to root-level remote code execut...

CVE-2019-11117

CVE-2019-11117 affects the Intel® Omni-Path Fabric Manager GUI prior to version 10.9.2.1.1. The root cause is improper permissions in the installer, which may allow an authenticated local user to escalate privileges. The Intel advisory (INTEL-SA-00257) confirms the issue and recommends updating t...

Intel® Omni-Path Fabric Manager GUI Advisory

Summary: A potential security vulnerability in Intel® Omni-Path Fabric Manager GUI may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2019-11117 Description: Improper permissions in the installer for...