Lucene search
K

150 matches found

CVE
CVE
added 2022/07/27 9:16 p.m.184 views

CVE-2022-1855

The CVE-2022-1855 entry corresponds to a memory misreference/use-after-free vulnerability in the Messaging component of Google Chrome, exploitable via a crafted HTML page to trigger heap corruption. Affected product: Google Chrome (Messaging component). Root cause: use-after-free causing memory m...

8.8CVSS9AI score0.0077EPSS
Exploits0References3Affected Software1
AlpineLinux
AlpineLinux
added 2022/07/27 9:16 p.m.47 views

CVE-2022-1855

Use after free in Messaging in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS9.2AI score0.0077EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/07/02 12:0 a.m.24 views

Fedora: Security Advisory for chromium (FEDORA-2022-bcb096166f)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.6CVSS7.2AI score0.0088EPSS
Exploits4References2
Kaspersky
Kaspersky
added 2022/05/31 12:0 a.m.127 views

KLA12548 Multiple vulnerabilities in Microsoft Browser

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. Inappropriate implementation vulnerability in...

9.6CVSS9.9AI score0.01759EPSS
Exploits3References26
Tenable Nessus
Tenable Nessus
added 2022/05/31 12:0 a.m.149 views

Microsoft Edge (Chromium) < 102.0.1245.30 Multiple Vulnerabilities

The version of Microsoft Edge installed on the remote Windows host is prior to 102.0.1245.30. It is, therefore, affected by multiple vulnerabilities as referenced in the May 31, 2022 advisory. - Microsoft Edge Chromium-based Elevation of Privilege Vulnerability. This CVE ID is unique from...

9.6CVSS6.7AI score0.01759EPSS
Exploits3References49
Circl
Circl
added 2022/05/26 11:43 a.m.5 views

CVE-2022-1855

creationtimestamp| type| source ---|---|--- 2022-05-26 11:43:50+00:00| seen| https://t.me/truesecator/2981...

8.8CVSS8AI score0.0077EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/05/26 12:0 a.m.39 views

Debian DSA-5148-1 : chromium - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5148 advisory. - Use after free in App Service in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially...

9.6CVSS7.1AI score0.0088EPSS
Exploits3References51
Debian
Debian
added 2022/05/25 6:31 p.m.89 views

[SECURITY] [DSA 5148-1] chromium security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5148-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 25, 2022 https://www.debian.org/security/faq -...

9.6CVSS8.7AI score0.0088EPSS
Exploits3
RedhatCVE
RedhatCVE
added 2022/05/25 2:30 p.m.53 views

CVE-2022-1855

No description is available for this CVE...

1.3AI score0.0077EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/05/24 12:0 a.m.111 views

FreeBSD : chromium -- multiple vulnerabilities (40e2c35e-db99-11ec-b0cf-3065ec8fd3ec)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 40e2c35e-db99-11ec-b0cf-3065ec8fd3ec advisory. - Use after free in App Service in Google Chrome prior to 102.0.5005.61 allowed an attacker wh...

9.6CVSS7.1AI score0.0088EPSS
Exploits3References26
Tenable Nessus
Tenable Nessus
added 2022/05/24 12:0 a.m.89 views

Google Chrome < 102.0.5005.61 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 102.0.5005.61. It is, therefore, affected by multiple vulnerabilities as referenced in the 202205stable-channel-update-for-desktop24 advisory. - Use after free in App Service in Google Chrome prior to 102.0.5005.61...

9.6CVSS7.2AI score0.0088EPSS
Exploits3References49
Tenable Nessus
Tenable Nessus
added 2022/05/24 12:0 a.m.74 views

Google Chrome < 102.0.5005.61 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 102.0.5005.61. It is, therefore, affected by multiple vulnerabilities as referenced in the 202205stable-channel-update-for-desktop24 advisory. - Use after free in App Service in Google Chrome prior to 102.0.5005.61 allowe...

9.6CVSS7.2AI score0.0088EPSS
Exploits3References49
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.21 views

Mageia: Security Advisory (MGASA-2015-0178)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.3AI score0.02815EPSS
Exploits0References6
OSV
OSV
added 2021/09/08 3:15 p.m.3 views

CVE-2021-1855

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.3. A malicious website may be able to force unnecessary network connections to fetch its favicon...

6.5CVSS5.8AI score0.00789EPSS
Exploits0References1
CVE
CVE
added 2021/09/08 2:45 p.m.80 views

CVE-2021-1855

CVE-2021-1855 describes a logic issue in Safari (macOS Big Sur WebKit/Safari cache/state handling) where a malicious webpage could trigger unnecessary network connections to fetch its favicon. The issue is fixed in macOS Big Sur 11.3. Affected product: macOS Big Sur 11.x prior to 11.3 (as disclos...

6.5CVSS6.5AI score0.00789EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2018:1855-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.3AI score0.02128EPSS
Exploits3References32
CVE
CVE
added 2020/02/18 2:28 a.m.109 views

CVE-2020-1855

CVE-2020-1855 affects Huawei HEGE-570 (1.0.1.22 SP3) and HEGE-560, OSCA-550/550A/550AX/550X (1.0.1.21 SP3) with an insufficient verification vulnerability. An attacker with physical access can tamper with device information, potentially causing service abnormality. Huawei has released software up...

6.1CVSS6.2AI score0.00208EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for libpng (EulerOS-SA-2019-1855)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.04113EPSS
Exploits0References2
Circl
Circl
added 2019/12/03 4:2 p.m.3 views

CVE-2015-1855

creationtimestamp| type| source ---|---|--- 2019-12-03 16:02:56+00:00| seen| https://t.me/cibsecurity/8447 2024-03-05 09:12:17+00:00| seen| https://t.me/ctinow/200023...

5.9CVSS6.8AI score0.02815EPSS
Exploits0References2
CVE
CVE
added 2019/11/29 8:46 p.m.200 views

CVE-2015-1855

CVE-2015-1855 affects Ruby’s OpenSSL hostname matching: the OpenSSL extension fails to validate hostnames, allowing server spoofing. Affected: Ruby/OpenSSL before 2.0.0 patchlevel 645; 2.1.x before 2.1.6; 2.2.x before 2.2.2. Root cause: permissive hostname matching (wildcards, IDNA, case, non‑ASC...

5.9CVSS5.5AI score0.02815EPSS
Exploits0References6Affected Software2
Rows per page
Query Builder