Lucene search
K

101 matches found

Vulnrichment
Vulnrichment
added 2024/05/01 12:50 p.m.23 views

CVE-2024-4331

Use after free in Picture In Picture in Google Chrome prior to 124.0.6367.118 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

6.5AI score0.01228EPSS
Exploits1References7
CVE
CVE
added 2024/05/01 12:50 p.m.353 views

CVE-2024-4331

CVE-2024-4331 affects Chromium-based browsers (Google Chrome/Chromium) with use-after-free in Picture-in-Picture prior to 124.0.6367.118. The vulnerability could allow a remote attacker to induce heap corruption via a crafted HTML page, with high impact across confidentiality, integrity, and avai...

8.8CVSS6.4AI score0.01228EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2024/05/01 12:50 p.m.36 views

CVE-2024-4331

Use after free in Picture In Picture in Google Chrome prior to 124.0.6367.118 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

9.3AI score0.01228EPSS
Exploits1References7
Debian CVE
Debian CVE
added 2024/05/01 12:50 p.m.54 views

CVE-2024-4331

Use after free in Picture In Picture in Google Chrome prior to 124.0.6367.118 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS9.6AI score0.01228EPSS
Exploits1
AlpineLinux
AlpineLinux
added 2024/05/01 12:50 p.m.63 views

CVE-2024-4331

Use after free in Picture In Picture in Google Chrome prior to 124.0.6367.118 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS9.2AI score0.01228EPSS
Exploits1
Google Chrome Security Advisories
Google Chrome Security Advisories
added 2024/04/30 12:0 a.m.70 views

Stable Channel Update for Desktop

The Stable channel has been updated to 124.0.6367.118/.119 for Windows, Mac and 124.0.6367.118 for Linux which will roll out over the coming days/weeks. A full list of changes in this build is available in the Log. The Extended Stable channel has been updated to 124.0.6367.118 for Mac and Windows...

8.8CVSS7.5AI score0.01228EPSS
Exploits2Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/04/30 12:0 a.m.28 views

Google Chrome < 124.0.6367.118 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 124.0.6367.118. It is, therefore, affected by multiple vulnerabilities as referenced in the 202404stable-channel-update-for-desktop30 advisory. - Use after free in Dawn in Google Chrome prior to 124.0.6367.118 allowed a...

8.8CVSS8.3AI score0.01228EPSS
Exploits2References5
FreeBSD
FreeBSD
added 2024/04/30 12:0 a.m.27 views

chromium -- multiple security fixes

Chrome Releases reports: This update includes 2 security fixes: 335003891 High CVE-2024-4331: Use after free in Picture In Picture. Reported by Zhenghang Xiao @Kipreyyy on 2024-04-16 333508731 High CVE-2024-4368: Use after free in Dawn. Reported by wgslfuzz on 2024-04-09...

9CVSS8AI score0.08875EPSS
Exploits4References1
Cvelist
Cvelist
added 2023/08/15 6:25 p.m.15 views

CVE-2023-4331 Broadcom RAID Controller web interface is vulnerable has an insecure default TLS configuration that support obsolete and vulnerable TLS protocols

Broadcom RAID Controller web interface is vulnerable has an insecure default TLS configuration that support obsolete and vulnerable TLS protocols...

7.8AI score0.00293EPSS
Exploits0References1
CVE
CVE
added 2023/08/15 6:25 p.m.38 views

CVE-2023-4331

CVE-2023-4331 concerns the Broadcom RAID Controller web interface, which is described as using an insecure default TLS configuration that supports obsolete and vulnerable TLS protocols. The combination of a network-accessible web interface and weak TLS, per the sources, implies potential confiden...

7.5CVSS7.5AI score0.00293EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/15 6:25 p.m.11 views

CVE-2023-4331 Broadcom RAID Controller web interface is vulnerable has an insecure default TLS configuration that support obsolete and vulnerable TLS protocols

Broadcom RAID Controller web interface is vulnerable has an insecure default TLS configuration that support obsolete and vulnerable TLS protocols...

7.2AI score0.00293EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/07/31 12:0 a.m.29 views

RHEL 9 : nodejs (RHSA-2023:4331)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:4331 advisory. Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The...

7.5CVSS6.9AI score0.03906EPSS
Exploits1References13
NVD
NVD
added 2023/03/09 10:15 p.m.16 views

CVE-2022-4331

An issue has been discovered in GitLab EE affecting all versions starting from 15.1 before 15.7.8, all versions starting from 15.8 before 15.8.4, all versions starting from 15.9 before 15.9.2. If a group with SAML SSO enabled is transferred to a new namespace as a child group, it's possible...

7.3CVSS6.3AI score0.00744EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/03/09 12:0 a.m.13 views

CVE-2022-4331

An issue has been discovered in GitLab EE affecting all versions starting from 15.1 before 15.7.8, all versions starting from 15.8 before 15.8.4, all versions starting from 15.9 before 15.9.2. If a group with SAML SSO enabled is transferred to a new namespace as a child group, it's possible...

5.7CVSS7AI score0.00744EPSS
Exploits0References3
OSV
OSV
added 2023/03/09 12:0 a.m.18 views

CVE-2022-4331

An issue has been discovered in GitLab EE affecting all versions starting from 15.1 before 15.7.8, all versions starting from 15.8 before 15.8.4, all versions starting from 15.9 before 15.9.2. If a group with SAML SSO enabled is transferred to a new namespace as a child group, it's possible...

5.7CVSS7.3AI score0.00744EPSS
Exploits0References5
CVE
CVE
added 2023/03/09 12:0 a.m.82 views

CVE-2022-4331

CVE-2022-4331 (GitLab EE) : Affects GitLab EE versions 15.1 up to but not including 15.7.8; 15.8 up to but not including 15.8.4; and 15.9 up to but not including 15.9.2. If a SAML SSO-enabled group is moved to a new namespace as a child group, a previously removed malicious maintainer/owner could...

7.3CVSS6.9AI score0.00744EPSS
Exploits0References3Affected Software1
Circl
Circl
added 2023/03/07 6:19 p.m.8 views

CVE-2021-4331

creationtimestamp| type| source ---|---|--- 2023-03-07 18:19:44+00:00| seen| https://t.me/cibsecurity/59581...

8.8CVSS8.1AI score0.00885EPSS
Exploits0References1
NVD
NVD
added 2023/03/07 3:15 p.m.22 views

CVE-2021-4331

The Plus Addons for Elementor plugin for WordPress is vulnerable to privilege escalation in versions up to, and including 4.1.9 pro and 2.0.6 free. The plugin adds a registration form to the Elementor page builders functionality. As part of the registration form, users can choose which role to se...

8.8CVSS8.8AI score0.00885EPSS
Exploits0References3
OSV
OSV
added 2023/03/07 3:15 p.m.5 views

CVE-2021-4331

The Plus Addons for Elementor plugin for WordPress is vulnerable to privilege escalation in versions up to, and including 4.1.9 pro and 2.0.6 free. The plugin adds a registration form to the Elementor page builders functionality. As part of the registration form, users can choose which role to se...

8.8CVSS5.6AI score0.00885EPSS
Exploits0References2
CVE
CVE
added 2023/03/07 2:7 p.m.45 views

CVE-2021-4331

CVE-2021-4331 – Plus Addons for Elementor (WordPress) is a privilege-escalation flaw in versions up to 4.1.9 (pro) and 2.0.6 (free). The plugin’s registration form exposes the default user role setting to lower-privilege users (e.g., contributors) who can select administrator as default, enabling...

8.8CVSS8.6AI score0.00885EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder