29 matches found
Couchbase 2.x < 7.2.5 Out-of-Bounds
The version of Couchbase installed on the remote host is prior to 7.2.5 or 7.6.2. It is, therefore, affected by an Out of bounds memory access exposure in V8 in Google Chrome prior to 120.0.6099.224. This allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. Not...
The Rise of Zero-Day Vulnerabilities: Why Traditional Security Solutions Fall Short
In recent years, the number and sophistication of zero-day vulnerabilities have surged, posing a critical threat to organizations of all sizes. A zero-day vulnerability is a security flaw in software that is unknown to the vendor and remains unpatched at the time of discovery. Attackers exploit...
FreeBSD : qt5-webengine -- Multiple vulnerabilities (a11e7dd1-bed4-11ee-bdd6-4ccc6adda413)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the a11e7dd1-bed4-11ee-bdd6-4ccc6adda413 advisory. - Integer overflow in Skia in Google Chrome prior to 119.0.6045.199 allowed a remote attacker...
MGASA-2024-0017 Updated chromium-browser-stable packages fix security vulnerabilities
The chromium-browser-stable package has been updated to the 120.0.6099.224 release. 4 vulnerabilities are fixed; some of them are listed below: High CVE-2024-0517: Out of bounds write in V8. Reported by Toan suto Pham of Qrious Secure on 2024-01-06. High CVE-2024-0518: Type Confusion in V8...
openSUSE 15 Security Update : opera (openSUSE-SU-2024:0033-1)
The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0033-1 advisory. - Out of bounds write in V8 in Google Chrome prior to 120.0.6099.224 allowed a remote attacker to potentially exploit heap corruption via a craft...
Security update for opera (important)
openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2024:0033-1 Rating: important References: Cross-References: CVE-2024-0517 CVE-2024-0518 CVE-2024-0519 CVSS scores: CVE-2024-0517 NVD : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2024-0518 NVD : 8.8...
openSUSE 15 Security Update : chromium (openSUSE-SU-2024:0025-1)
The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0025-1 advisory. - Out of bounds write in V8 in Google Chrome prior to 120.0.6099.224 allowed a remote attacker to potentially exploit heap corruption via a craft...
FreeBSD : electron26 -- Out of bounds memory access in V8 (2264566a-a890-46eb-a895-7881dd220bd0)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 2264566a-a890-46eb-a895-7881dd220bd0 advisory. - Out of bounds memory access in V8 in Google Chrome prior to 120.0.6099.224 allowed a remote attacker ...
Fedora 39 : chromium (2024-44b1f656a3)
The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-44b1f656a3 advisory. update to 120.0.6099.224 - High CVE-2024-0517: Out of bounds write in V8 - High CVE-2024-0518: Type Confusion in V8 - High CVE-2024-0519: Out of...
Fedora 38 : chromium (2024-049f068a8c)
The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-049f068a8c advisory. update to 120.0.6099.224 - High CVE-2024-0517: Out of bounds write in V8 - High CVE-2024-0518: Type Confusion in V8 - High CVE-2024-0519: Out of...
Google Fixes First Actively Exploited Chrome Zero-day of 2024
Summary: Google has addressed the first actively exploited Chrome zero-day vulnerability of 2024, identified as CVE-2024-0519. Its a high-severity out-of-bounds memory access weakness in Chromes V8. Attackers could exploit it to access data beyond the intended memory buffer, potentially leaking...
electron26 -- Out of bounds memory access in V8
Electron developers report: This update fixes the following vulnerability: Security: backported fix for CVE-2024-0519...
[SECURITY] [DSA 5602-1] chromium security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5602-1 [email protected] https://www.debian.org/security/ Andres Salomon January 17, 2024 https://www.debian.org/security/faq -...
Chromium: CVE-2024-0519 Out of bounds memory access in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware of reports that an exploit for CVE-2024-0519 exists in the wild...
FreeBSD : chromium -- multiple security fixes (1bc07be0-b514-11ee-86bb-a8a1599412c6)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 1bc07be0-b514-11ee-86bb-a8a1599412c6 advisory. - Out of bounds write in V8 in Google Chrome prior to 120.0.6099.224 allowed a remote attacker...
Debian dsa-5602 : chromium - security update
The remote Debian 11 / 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5602 advisory. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5602...
Vulnerabilities fixed in Google Chrome
Google has fixed vulnerabilities in Chrome. A malicious person could exploit the vulnerabilities to execute arbitrary code with privileges of the browser, or to gain access to sensitive data in the context of the browser. Successful exploitation requires the malicious party to trick the victim in...
Google Chrome Security Update (stable-channel-update-for-desktop_16-2024-01) - Windows
Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...
CVE-2024-0519
Out of bounds memory access in V8 in Google Chrome prior to 120.0.6099.224 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
CVE-2024-0519
Out of bounds memory access in V8 in Google Chrome prior to 120.0.6099.224 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...