Lucene search
K

5 matches found

CVE
CVE
added 2020/10/16 4:33 p.m.134 views

CVE-2020-9870

CVE-2020-9870 is a WebKit/JavaScriptCore-related logic issue that allowed bypassing exploit mitigations (StructureID randomization, the Gigacage, and PAC/APRR) to achieve arbitrary memory read/write. The published material describes bypassing StructureID checks via crafted JSArray/JSCell headers,...

8.8CVSS7.6AI score0.01971EPSS
Exploits1References3Affected Software4
Circl
Circl
added 2020/09/04 2:7 p.m.6 views

CVE-2020-9870

creationtimestamp| type| source ---|---|--- 2020-09-04 14:07:52+00:00| published-proof-of-concept| https://t.me/R0Crew/1782...

8.8CVSS7.6AI score0.01971EPSS
Exploits1References1
GoogleProjectZero
GoogleProjectZero
added 2020/09/01 12:0 a.m.218 views

JITSploitation II: Getting Read/Write

Posted by Samuel Groß, Project Zero This three-part series highlights the technical challenges involved in finding and exploiting JavaScript engine vulnerabilities in modern web browsers and evaluates current exploit mitigation technologies. The exploited vulnerability, CVE-2020-9802, was fixed i...

8.8CVSS9.4AI score0.08207EPSS
Exploits4
GoogleProjectZero
GoogleProjectZero
added 2020/09/01 12:0 a.m.79 views

JITSploitation III: Subverting Control Flow

Posted by Samuel Groß, Project Zero This three-part series highlights the technical challenges involved in finding and exploiting JavaScript engine vulnerabilities in modern web browsers and evaluates current exploit mitigation technologies. The exploited vulnerability, CVE-2020-9802, was fixed i...

8.8CVSS9.4AI score0.08207EPSS
Exploits4
GoogleProjectZero
GoogleProjectZero
added 2020/09/01 12:0 a.m.71 views

JITSploitation I: A JIT Bug

By Samuel Groß, Project Zero This three-part series highlights the technical challenges involved in finding and exploiting JavaScript engine vulnerabilities in modern web browsers and evaluates current exploit mitigation technologies. The exploited vulnerability, CVE-2020-9802, was fixed in iOS...

8.8CVSS9.5AI score0.08207EPSS
Exploits4
Rows per page
Query Builder