18 matches found
Exploit for CVE-2025-2783
Chromium CVE-2025-2783: Sandbox Escape & Full-Chain RCE Exploi...
New ForumTroll Phishing Attacks Target Russian Scholars Using Fake eLibrary Emails
The threat actor linked to Operation ForumTroll has been attributed to a fresh set of phishing attacks targeting individuals within Russia, according to Kaspersky. The Russian cybersecurity vendor said it detected the new activity in October 2025. The origins of the threat actor are presently...
New Dante Spyware Linked to Rebranded Hacking Team, Now Memento Labs
Kaspersky researchers uncovered Operation ForumTroll, an attack campaign utilising the new 'Dante' spyware developed by Memento Labs, the rebranded Hacking Team. The attacks used a Chrome zero-day vulnerability CVE-2025-2783 and COM hijacking for persistence, confirming the continued deployment o...
openSUSE Security Advisory (openSUSE-SU-2025:0111-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Vulnerability in most browsers abused in targeted attacks
Researchers found a vulnerability in Chrome that was abused in the wild against organizations in Russia. Google has released an update for its Chrome browser which includes patches for this vulnerability. The update brings the Stable channel to versions 134.0.6998.178 for Windows. Other operating...
Mozilla Firefox < 136.0.4
The version of Firefox installed on the remote Windows host is prior to 136.0.4. It is, therefore, affected by a vulnerability as referenced in the mfsa2025-19 advisory. - Following the recent Chrome sandbox escape CVE-2025-2783, various Firefox developers identified a similar pattern in our IPC...
Mozilla Firefox ESR < 115.21.1
The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 115.21.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2025-19 advisory. - Following the recent Chrome sandbox escape CVE-2025-2783, various Firefox developers identified a similar...
Microsoft Edge (Chromium-Based) Sandbox Escape Vulnerability (Mar 2025)
Microsoft Edge Chromium-Based is prone to an use after free vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
electron{33,34} -- Incorrect handle provided in unspecified circumstances in Mojo
Electron developers report: This update fixes the following vulnerability: Security: backported fix for CVE-2025-2783...
Chromium: CVE-2025-2783 Incorrect handle provided in unspecified circumstances in Mojo on Windows
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
CVE-2025-2783
Incorrect handle provided in unspecified circumstances in Mojo in Google Chrome on Windows prior to 134.0.6998.177 allowed a remote attacker to perform a sandbox escape via a malicious file. Chromium security severity: High...
CVE-2025-2783
Incorrect handle provided in unspecified circumstances in Mojo in Google Chrome on Windows prior to 134.0.6998.177 allowed a remote attacker to perform a sandbox escape via a malicious file. Chromium security severity: High...
CVE-2025-2783
Incorrect handle provided in unspecified circumstances in Mojo in Google Chrome on Windows prior to 134.0.6998.177 allowed a remote attacker to perform a sandbox escape via a malicious file. Chromium security severity: High...
CVE-2025-2783
Incorrect handle provided in unspecified circumstances in Mojo in Google Chrome on Windows prior to 134.0.6998.177 allowed a remote attacker to perform a sandbox escape via a malicious file. Chromium security severity: High...
CVE-2025-2783
Incorrect handle provided in unspecified circumstances in Mojo in Google Chrome on Windows prior to 134.0.6998.177 allowed a remote attacker to perform a sandbox escape via a malicious file. Chromium security severity: High Recent assessments: cbeek-r7 at October 29, 2025 12:50pm UTC reported:...
Microsoft Edge (Chromium) < 134.0.3124.93 (CVE-2025-2783)
The version of Microsoft Edge installed on the remote Windows host is prior to 134.0.3124.93. It is, therefore, affected by a vulnerability as referenced in the March 26, 2025 advisory. - Incorrect handle provided in unspecified circumstances in Mojo in Google Chrome on Windows prior to...
Google Chrome < 134.0.6998.177 Vulnerability
The version of Google Chrome installed on the remote Windows host is prior to 134.0.6998.177. It is, therefore, affected by a vulnerability as referenced in the 202503stable-channel-update-for-desktop25 advisory. - Incorrect handle provided in unspecified circumstances in Mojo in Google Chrome on...
Stable Channel Update for Desktop
The Stable channel has been updated to 134.0.6998.177/.178 for Windows which will roll out over the coming days/weeks. A full list of changes in this build is available in the Log. Extended stable channel has been updated to 134.0.6998.178 for Windows and will roll out over coming days/weeks...