28 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-5274
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Type Confusion in V8 in Google Chrome prior to 125.0.6422.112 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page...
Russian Hackers Exploit Safari and Chrome Flaws in High-Profile Cyberattack
Cybersecurity researchers have flagged multiple in-the-wild exploit campaigns that leveraged now-patched flaws in Apple Safari and Google Chrome browsers to infect mobile users with information-stealing malware. "These campaigns delivered n-day exploits for which patches were available, but would...
Exploit for Type Confusion in Google Chrome
CVE-2024-5274 authors: @mistymntncop, @buptsb Shoutout to @bup...
Microsoft Edge (Chromium) < 125.0.2535.67 Multiple Vulnerabilities
The version of Microsoft Edge installed on the remote Windows host is prior to 125.0.2535.67. It is, therefore, affected by multiple vulnerabilities as referenced in the May 16, 2024 advisory. - Use after free in Scheduling in Google Chrome prior to 125.0.6422.76 allowed a remote attacker to...
openSUSE 15 Security Update : opera (openSUSE-SU-2024:0156-1)
The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0156-1 advisory. Update to 110.0.5130.64 CHR-9748 Update Chromium on desktop-stable-124-5130 to 124.0.6367.243 DNA-116317 Create outline or shadow around emojis o...
Fedora: Security Advisory (FEDORA-2024-b5dd623284)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 39 : chromium (2024-151b368efb)
The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-151b368efb advisory. update to 125.0.6422.112 High CVE-2024-5274: Type Confusion in V8 Tenable has extracted the preceding description block directly from the Fedora security...
FreeBSD : chromium -- security fix (6926d038-1db4-11ef-9f97-a8a1599412c6)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 6926d038-1db4-11ef-9f97-a8a1599412c6 advisory. Chrome Releases reports: This update includes 1 security fix: Tenable has extracted the preceding...
CVE-2024-5274
Type Confusion in V8 in Google Chrome prior to 125.0.6422.112 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High Mitigation Until updated packages are released for Fedora and EPEL, consider temporarily swapping to an...
CVE-2024-5274 vulnerabilities
Vulnerabilities for packages: chromium...
CVE-2024-5274
CVE-2024-5274 is a type confusion flaw in Google Chrome’s V8 engine (Chromium-based) that could allow a remote attacker to execute arbitrary code inside the Chrome sandbox via a crafted HTML page. The vulnerability affects Chrome versions prior to 125.0.6422.112 (Windows, macOS, Linux) and is cla...
CVE-2024-5274
Type Confusion in V8 in Google Chrome prior to 125.0.6422.112 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
CVE-2024-5274
Type Confusion in V8 in Google Chrome prior to 125.0.6422.112 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-5274 Google Chromium V8 Type Confusion Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant...
CVE-2024-5274
Type Confusion in V8 in Google Chrome prior to 125.0.6422.112 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...
openSUSE 15 Security Update : opera (openSUSE-SU-2024:0142-1)
The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0142-1 advisory. - Update to 110.0.5130.39 DNA-115603 Rich Hints Pass trigger source to the Rich Hint DNA-116680 Import 0-day fix for CVE-2024-5274 - Update to...
Mageia: Security Advisory (MGASA-2024-0196)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated chromium-browser-stable packages fix security vulnerabilities
The chromium-browser-stable package has been updated to the 125.0.6422.112 release. It includes 1 security fix. High CVE-2024-5274: Type Confusion in V8. Reported by Clément Lecigne of Google's Threat Analysis Group and Brendon Tiszka of Chrome Security on 2024-05-20 Google is aware that an explo...
Security update for opera (important)
openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2024:0142-1 Rating: important References: Cross-References: CVE-2024-4671 CVE-2024-5274 CVSS scores: CVE-2024-4671 NVD : 9.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H Affected Products: openSUSE Leap 15.5:NonFree ...
Microsoft Edge (Chromium-Based) Type Confusion Vulnerability - May24
Microsoft Edge Chromium-Based is prone to a type confusion vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...