21 matches found
SUSE CVE-2020-15974
Integer overflow in Blink in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to bypass site isolation via a crafted HTML page...
Debian DSA-4824-1 : chromium - security update
Multiple security issues were discovered in the Chromium web browser, which could result in the execution of arbitrary code, denial of service or information disclosure. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security...
CVE-2020-15974
Integer overflow in Blink in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to bypass site isolation via a crafted HTML page...
UBUNTU-CVE-2020-15974
Integer overflow in Blink in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to bypass site isolation via a crafted HTML page...
CVE-2020-15974
Integer overflow in Blink in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to bypass site isolation via a crafted HTML page...
CVE-2020-15974
CVE-2020-15974 is an integer overflow in Blink affecting Chromium/Google Chrome prior to 86.0.4240.75, potentially enabling arbitrary code execution or site‑isolation bypass as described in the linked Debian advisory. Debian notes a broader patch set and fixes in 87.0.4280.88-0.4~deb10u1 for Chro...
openSUSE: Security Advisory for chromium (openSUSE-SU-2020:1705-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[ASA-202010-1] chromium: multiple issues
Arch Linux Security Advisory ASA-202010-1 ========================================= Severity: Critical Date : 2020-10-10 CVE-ID : CVE-2020-6557 CVE-2020-15967 CVE-2020-15968 CVE-2020-15969 CVE-2020-15970 CVE-2020-15971 CVE-2020-15972 CVE-2020-15973 CVE-2020-15974 CVE-2020-15975 CVE-2020-15976...
FreeBSD : chromium -- multiple vulnerabilities (64988354-0889-11eb-a01b-e09467587c17)
Chrome releases reports : This release contains 35 security fixes, including : - 1127322 Critical CVE-2020-15967: Use after free in payments. Reported by Man Yue Mo of GitHub Security Lab on 2020-09-11 - 1126424 High CVE-2020-15968: Use after free in Blink. Reported by Anonymous on 2020-09-09 -...
CVE-2020-15974
Integer overflow in Blink in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to bypass site isolation via a crafted HTML page...
Stable Channel Update for Desktop
The Chrome team is delighted to announce the promotion of Chrome 86 to the stable channel for Windows, Mac and Linux. This will roll out over the coming days/weeks. Chrome 86.0.4240.75 contains a number of fixes and improvements -- a list of changes is available in the log. Watch out for upcoming...
Google Chrome < 86.0.4240.75 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 86.0.4240.75. It is, therefore, affected by multiple vulnerabilities as referenced in the 202010stable-channel-update-for-desktop advisory. - Insufficient policy enforcement in networking in Google Chrome prior to...
CVE-2019-15974
creationtimestamp| type| source ---|---|--- 2020-09-23 07:55:39+00:00| seen| https://t.me/cibsecurity/14837...
CVE-2019-15974
Cisco MSX Open Redirect vulnerability (CVE-2019-15974) affects Cisco Managed Services Accelerator web interface. Improper input validation of HTTP request parameters enables an unauthenticated, remote attacker to induce user redirection to a malicious URL. Exploitation could be achieved by interc...
CVE-2019-15974 Cisco Managed Services Accelerator Open Redirect Vulnerability
A vulnerability in the web interface of Cisco Managed Services Accelerator MSX could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. The vulnerability is due to improper input validation of the parameters of an HTTP request. An attacker could exploit this...
Cisco Managed Services Accelerator CVE-2019-15974 Open Redirection Vulnerability
Description Cisco Managed Services Accelerator is prone to an open-redirection vulnerability because it fails to properly sanitize user-supplied input. An attacker can leverage this issue by constructing a crafted URI and enticing a user to follow it. When an unsuspecting victim follows the link,...
CVE-2018-15974
Adobe Framemaker versions 1.0.5.1 and below have an insecure library loading dll hijacking vulnerability. Successful exploitation could lead to privilege escalation...
CVE-2018-15974
CVE-2018-15974 affects Adobe FrameMaker on Windows, with versions 1.0.5.1 and earlier vulnerable to an insecure library loading (DLL hijacking) flaw that could enable privilege escalation on successful exploitation. Several connected sources corroborate this flaw and tie it to insecure DLL loadin...
tPanel 2009 - Authentication Bypass Vulnerability
Exploit for php platform in category web applications Exploit Title: tPanel 2009 - Authentication Bypass Vendor Homepage: http://www.datacomponents.net/ Software Link: http://www.datacomponents.net/products/hosting/tpanel/ Demo: http://demo.datacomponents.net/tpanel/ Version: 2009 Category: Webap...
CVE-2017-15974
The provided documents identify CVE-2017-15974 as a SQL injection vulnerability in tPanel 2009 that enables authentication bypass via strings like 'or 1=1 or ''=' in login.php. Affected component: tPanel 2009 web hosting control panel (login mechanism). Root cause: unsafely constructed SQL in aut...