39 matches found
Exploit for Out-of-bounds Write in Google Chrome
Exploitation of CVE-2021-21220 From Incorrect JIT Behavior...
CVE-2022-21220
Improper restriction of XML external entity for IntelR QuartusR Prime Pro Edition before version 21.3 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2025-21220
Microsoft Message Queuing Information Disclosure Vulnerability...
CVE-2025-21220
Microsoft Message Queuing Information Disclosure Vulnerability...
CVE-2025-21220
CVE-2025-21220 is a Microsoft Message Queuing information disclosure vulnerability that has concrete public details in multiple connected sources: the CVE is listed as affecting Windows Message Queuing with the impact described as “Accessing Sensitive Data” and a CVSS basis of 7.5 (HIGH) indicati...
CVE-2025-21220
creationtimestamp| type| source ---|---|--- 2025-01-14 17:29:48+00:00| seen| https://www.thezdi.com/blog/2025/1/14/the-january-2025-security-update-review 2025-01-14 18:17:37+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpudphlfm2r 2025-01-14 19:11:04+00:00| seen|...
CVE-2023-21220
there is a possible use of unencrypted transport over cellular networks due to an insecure default value. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroi...
CVE-2023-21220
Technical details about CVE-2023-21220 are not publicly provided in the supplied documents. Information about affected components, root cause, and fixes is not disclosed here. Monitor for updates.
Intel® Quartus® Advisory
Summary: Potential security vulnerabilities in Intel® Quartus® Prime Pro and Standard Editions may allow escalation of privilege, denial of service, or information disclosure. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID:...
CVE-2022-21220
Improper restriction of XML external entity for IntelR QuartusR Prime Pro Edition before version 21.3 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-21220
Intel Quartus Prime Pro Edition before 21.3 is affected by CVE-2022-21220 due to improper restriction of XML external entities (XXE) in the product. The issue could allow an authenticated user to escalate privileges via local access. Affected product is Intel® Quartus® Prime Pro Edition prior to ...
CVE-2022-21220
Improper restriction of XML external entity for IntelR QuartusR Prime Pro Edition before version 21.3 may allow an authenticated user to potentially enable escalation of privilege via local access...
Google Releases Urgent Chrome Update to Patch 2 Actively Exploited 0-Day Bugs
Google on Thursday rolled out an emergency update for its Chrome web browser, including fixes for two zero-day vulnerabilities that it says are being actively exploited in the wild. Tracked as CVE-2021-38000 and CVE-2021-38003, the weaknesses relate to insufficient validation of untrusted input i...
New Chrome 0-Day Bug Under Active Attacks – Update Your Browser ASAP!
Attention readers, if you are using Google Chrome browser on your Windows, Mac, or Linux computers, you need to update it immediately to the latest version Google released earlier today. The internet services company has rolled out an urgent update to the browser to address 14 newly discovered...
Fedora: Security Advisory for chromium (FEDORA-2021-c3754414e7)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Google Chrome XOR Typer Out-Of-Bounds Access / Remote Code Execution
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Google Chrome versions before 89.0.4389.128 V8 XOR Typer Out-Of-Bounds Access RCE', 'Description' = %q This module exploits an issue in the V8...
CVE-2021-21220
Insufficient validation of untrusted input in V8 in Google Chrome prior to 89.0.4389.128 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
CVE-2021-21220
Insufficient validation of untrusted input in V8 in Google Chrome prior to 89.0.4389.128 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
CVE-2021-21220
Insufficient validation of untrusted input in V8 in Google Chrome prior to 89.0.4389.128 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
CVE-2021-21220
Insufficient validation of untrusted input in V8 in Google Chrome prior to 89.0.4389.128 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...