Lucene search
K

155 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 3:38 a.m.4 views

SUSE CVE-2021-38016

Insufficient policy enforcement in background fetch in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to bypass same origin policy via a crafted HTML page...

8.8CVSS7.8AI score0.00805EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 3:34 a.m.4 views

SUSE CVE-2022-1139

Inappropriate implementation in Background Fetch API in Google Chrome prior to 100.0.4896.60 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS6.7AI score0.00756EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 3:32 a.m.4 views

SUSE CVE-2022-2610

Insufficient policy enforcement in Background Fetch in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS6.7AI score0.00645EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2022/08/29 12:0 a.m.9 views

The vulnerability of the Background Fetch component in Google Chrome and Microsoft Edge browsers allows attackers to disclose protected information.

The vulnerability of the Background Fetch component in Google Chrome and Microsoft Edge is related to access control deficiencies. Exploiting this vulnerability can allow a malicious actor to disclose protected information through a specially created web page...

7.8CVSS6.7AI score0.00645EPSS
Exploits0References13Affected Software7
OPENSUSE Linux
OPENSUSE Linux
added 2022/08/16 12:0 a.m.50 views

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2022:10092-1 Rating: important References: 1202075 Cross-References: CVE-2022-2603 CVE-2022-2604 CVE-2022-2605 CVE-2022-2606 CVE-2022-2607 CVE-2022-2608 CVE-2022-2609 CVE-2022-2610 CVE-2022-2611 CVE-2022-2612...

8.8CVSS6.9AI score0.00799EPSS
Exploits3References1
OSV
OSV
added 2022/08/12 8:15 p.m.2 views

DEBIAN-CVE-2022-2610

Insufficient policy enforcement in Background Fetch in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS6.9AI score0.00645EPSS
Exploits0References1
OSV
OSV
added 2022/08/12 8:15 p.m.24 views

CVE-2022-2610

Insufficient policy enforcement in Background Fetch in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS6.4AI score
Exploits0References4
NVD
NVD
added 2022/08/12 8:15 p.m.23 views

CVE-2022-2610

Insufficient policy enforcement in Background Fetch in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS0.00645EPSS
Exploits0References4
Prion
Prion
added 2022/08/12 8:15 p.m.28 views

Design/Logic Flaw

Insufficient policy enforcement in Background Fetch in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

4.3CVSS6.2AI score0.00645EPSS
Exploits0References4Affected Software2
OSV
OSV
added 2022/08/12 8:15 p.m.2 views

UBUNTU-CVE-2022-2610

Insufficient policy enforcement in Background Fetch in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS6.8AI score0.00645EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/08/12 8:15 p.m.7 views

CVE-2022-2610

Insufficient policy enforcement in Background Fetch in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS6.8AI score0.00645EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2022/08/12 7:36 p.m.42 views

CVE-2022-2610

Insufficient policy enforcement in Background Fetch in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS6.5AI score0.00645EPSS
Exploits0
Debian CVE
Debian CVE
added 2022/08/12 7:36 p.m.47 views

CVE-2022-2610

Insufficient policy enforcement in Background Fetch in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS7.1AI score0.00645EPSS
Exploits0
CVE
CVE
added 2022/08/12 7:36 p.m.202 views

CVE-2022-2610

CVE-2022-2610 : Concrete details across connected docs show a Chrome/Chromium vulnerability in Background Fetch due to insufficient policy enforcement, allowing a remote attacker to leak cross-origin data via a crafted HTML page. Affected software is Google Chrome (Chromium-based), with the root ...

6.5CVSS6.2AI score0.00645EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2022/08/12 7:36 p.m.33 views

CVE-2022-2610

Insufficient policy enforcement in Background Fetch in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.6AI score0.00645EPSS
Exploits0References4
OPENSUSE Linux
OPENSUSE Linux
added 2022/08/12 12:0 a.m.51 views

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2022:10086-1 Rating: important References: 1202075 Cross-References: CVE-2022-2603 CVE-2022-2604 CVE-2022-2605 CVE-2022-2606 CVE-2022-2607 CVE-2022-2608 CVE-2022-2609 CVE-2022-2610 CVE-2022-2611 CVE-2022-2612...

8.8CVSS6.9AI score0.00799EPSS
Exploits3References1
Veracode
Veracode
added 2022/08/11 8:23 a.m.32 views

Information Disclosure

chrome is vulnerable to information disclosure. The vulnerability exists due to an Insufficient policy enforcement in Background Fetch allowing an attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS6.6AI score0.00645EPSS
Exploits0References6Affected Software3
Tenable Nessus
Tenable Nessus
added 2022/08/06 12:0 a.m.210 views

Microsoft Edge (Chromium) < 104.0.1293.47 Multiple Vulnerabilities

The version of Microsoft Edge installed on the remote Windows host is prior to 104.0.1293.47. It is, therefore, affected by multiple vulnerabilities as referenced in the August 5, 2022 advisory. - Use after free in Omnibox. CVE-2022-2603 - Use after free in Safe Browsing. CVE-2022-2604 - Out of...

9.6CVSS6.9AI score0.01894EPSS
Exploits3References41
Mageia
Mageia
added 2022/08/05 9:0 p.m.124 views

Updated chromium-browser-stable packages fix security vulnerability

1325699 High CVE-2022-2603: Use after free in Omnibox. Reported by Anonymous on 2022-05-16 1335316 High CVE-2022-2604: Use after free in Safe Browsing. Reported by Nan Wang@eternalsakura13 and Guang Gong of 360 Alpha Lab on 2022-06-10 1338470 High CVE-2022-2605: Out of bounds read in Dawn. Report...

8.8CVSS0.3AI score0.00799EPSS
Exploits3References3
Microsoft CVE
Microsoft CVE
added 2022/08/05 7:0 a.m.44 views

Chromium: CVE-2022-2610 Insufficient policy enforcement in Background Fetch

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS7.2AI score0.00645EPSS
Exploits0
Rows per page
Query Builder