DEBIAN-CVE-2026-7958

Inappropriate implementation in ServiceWorker in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a malicious extension to inject arbitrary scripts or HTML UXSS via a crafted Chrome Extension. Chromium security severity: Medium...

CVE-2026-7958

Inappropriate implementation in ServiceWorker in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a malicious extension to inject arbitrary scripts or HTML UXSS via a crafted Chrome Extension. Chromium security severity: Medium...

MINI-JH3P-7958-PH77

Bulletin has no description...

CVE-2020-7958

An issue was discovered on OnePlus 7 Pro devices before 10.0.3.GM21BA. The firmware was found to contain functionality that allows a privileged user root in the Rich Execution Environment REE to obtain bitmap images from the fingerprint sensor because of Leftover Debug Code. The issue is that the...

EUVD-2015-7958

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2016-7958

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.2.0, the NCP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/CMakeLists.t...

RockyLinux 9 : firefox (RLSA-2024:7958)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:7958 advisory. firefox: Use-after-free in Animation timeline 128.3.1 ESR Chemspill CVE-2024-9680 Tenable has extracted the preceding description block directly from the RockyLin...

AlmaLinux 9 : firefox (ALSA-2024:7958)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2024:7958 advisory. firefox: Use-after-free in Animation timeline 128.3.1 ESR Chemspill CVE-2024-9680 Tenable has extracted the preceding description block directly from the AlmaLinux...

Oracle Linux 9 : firefox (ELSA-2024-7958)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-7958 advisory. 128.3.1-2.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file...

SUSE CVE-2016-7958

In Wireshark 2.2.0, the NCP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/CMakeLists.txt by registering this dissector...

Oracle Linux 9 : libguestfs (ELSA-2022-7958)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-7958 advisory. - Fix CVE-2022-2211 Denial of Service in --key parameter resolves: rhbz2101281 Tenable has extracted the preceding description block directly from the Oracle...

AlmaLinux 9 : libguestfs (ALSA-2022:7958)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:7958 advisory. - A vulnerability was found in libguestfs. This issue occurs while calculating the greatest possible number of matching keys in the getkeys function. This flaw lea...

CVE-2020-7958

creationtimestamp| type| source ---|---|--- 2020-04-15 14:10:01+00:00| seen| https://t.me/SecLabNews/7361 2020-04-18 16:03:41+00:00| seen| https://t.me/androidMalware/770 2020-04-30 06:40:31+00:00| published-proof-of-concept| https://t.me/R0Crew/1533 2020-05-04 18:58:22+00:00|...

CVE-2020-7958

The CVE-2020-7958 entry concerns OnePlus 7 Pro devices (prior to 10.0.3.GM21BA). A leftover-debug-code issue in the firmware allows a privileged root user in the Rich Execution Environment (REE) to obtain bitmap fingerprint images from the sensor. The root cause is that the Trusted Application (T...

CVE-2019-7958

CVE-2019-7958 affects Adobe Creative Cloud Desktop Application 4.6.1 and earlier. The NVD entry describes an insecure inherited permissions issue that could lead to privilege escalation, with a CVSS v3 impact of High/High/High (CRITICAL overall). Connected sources corroborate the affected product...

CVE-2019-7958

Creative Cloud Desktop Application versions 4.6.1 and earlier have an insecure inherited permissions vulnerability. Successful exploitation could lead to privilege escalation...

Adobe Creative Cloud Desktop <= 4.6.1.393 Multiple Vulnerabilities (APSB19-39) (macOS)

The version of Adobe Creative Cloud installed on the remote Mac OS X host is equal or prior to 4.6.1.393. It is, therefore, affected by multiple vulnerabilities. The most critical of which allows an attacker to perform arbitrary code execution in the context of the current user. Note that Nessus...

Adobe Creative Cloud Desktop <= 4.6.1.393 Multiple Vulnerabilities (APSB19-39)

The version of Adobe Creative Cloud Desktop installed on the remote Windows host is equal or prior to 4.6.1.393. It is, therefore, affected by multiple vulnerabilities. The most critical of which allows an attacker to perform arbitrary code execution in the context of the current user. Note that...

CVE-2018-7958

CVE-2018-7958 affects Huawei eSpace products (eSpace/7950 series as described in CNVD/CVE listings). Description: an anonymous TLS cipher suite is supported, enabling an unauthenticated, remote attacker to perform a man-in-the-middle attack and hijack the connection during user sign-up/login over...

DEBIAN-CVE-2016-7958

In Wireshark 2.2.0, the NCP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/CMakeLists.txt by registering this dissector...