Lucene search
K

5126 matches found

OSV
OSV
added 2024/07/16 10:15 p.m.1 views

DEBIAN-CVE-2024-6774

Use after free in Screen Capture in Google Chrome prior to 126.0.6478.182 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.5AI score0.00473EPSS
Exploits1References1
NVD
NVD
added 2024/07/16 10:15 p.m.24 views

CVE-2024-6774

Use after free in Screen Capture in Google Chrome prior to 126.0.6478.182 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS0.00473EPSS
Exploits1References2
CVE
CVE
added 2024/07/16 9:43 p.m.305 views

CVE-2024-6774

CVE-2024-6774 refers to a use-after-free in Chrome/Chromium’s Screen Capture feature that could allow heap corruption via a crafted HTML page, triggered by the user through specific UI gestures. Affected software is Google Chrome/Chromium prior to version 126.0.6478.182; the issue is rated High i...

8.8CVSS6.7AI score0.00473EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/07/16 9:43 p.m.20 views

CVE-2024-6774

Use after free in Screen Capture in Google Chrome prior to 126.0.6478.182 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

6.9AI score0.00473EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/07/16 9:43 p.m.24 views

CVE-2024-6774

Use after free in Screen Capture in Google Chrome prior to 126.0.6478.182 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

0.00473EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2024/07/16 9:43 p.m.15 views

CVE-2024-6774

Use after free in Screen Capture in Google Chrome prior to 126.0.6478.182 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.5AI score0.00473EPSS
Exploits1
AlpineLinux
AlpineLinux
added 2024/07/16 9:43 p.m.14 views

CVE-2024-6774

Use after free in Screen Capture in Google Chrome prior to 126.0.6478.182 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.1AI score0.00473EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/07/16 12:0 a.m.98 views

Google Chrome < 126.0.6478.182 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 126.0.6478.182. It is, therefore, affected by multiple vulnerabilities as referenced in the 202407stable-channel-update-for-desktop advisory. - Out of bounds memory access in V8 in Google Chrome prior to 126.0.6478.182...

9.6CVSS7.7AI score0.00781EPSS
Exploits10References17
Tenable Nessus
Tenable Nessus
added 2024/07/16 12:0 a.m.56 views

Google Chrome < 126.0.6478.182 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 126.0.6478.182. It is, therefore, affected by multiple vulnerabilities as referenced in the 202407stable-channel-update-for-desktop advisory. - Out of bounds memory access in V8 in Google Chrome prior to 126.0.6478.182...

9.6CVSS7.7AI score0.00781EPSS
Exploits10References17
Tenable Nessus
Tenable Nessus
added 2024/07/16 12:0 a.m.17 views

Google Chrome < 124.0.6367.182 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 124.0.6367.182. It is, therefore, affected by multiple vulnerabilities as referenced in the 202407stable-channel-update-for-desktop advisory. - Inappropriate implementation in V8 in Google Chrome prior to 126.0.6478.182...

9.6CVSS7.7AI score0.00781EPSS
Exploits10References17
Cvelist
Cvelist
added 2024/07/15 7:53 p.m.24 views

CVE-2024-39919 Capture screenshot of localhost web services (unauthenticated pages) in @jmondi/url-to-png

@jmondi/url-to-png is an open source URL to PNG utility featuring parallel rendering using Playwright for screenshots and with storage caching via Local, S3, or CouchDB. The package includes an ALLOWLIST where the host can specify which services the user is permitted to capture screenshots of. By...

3.1CVSS0.0037EPSS
Exploits0References2
NVD
NVD
added 2024/07/15 6:15 p.m.5 views

CVE-2024-37016

Mengshen Wireless Door Alarm M70 2024-05-24 allows Authentication Bypass via a Capture-Replay approach...

6.8CVSS0.00316EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2024/07/15 5:47 p.m.16 views

@jmondi/url-to-png enables capture screenshot of localhost web services (unauthenticated pages)

Summary The maintainer been contemplating whether FTP or other protocols could serve as useful functionalities, but there may not be a practical reason for it since we are utilizing headless Chrome to capture screenshots. The argument is based on the assumption that this package can function as a...

3.1CVSS6.6AI score0.0037EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2024/07/15 12:0 a.m.1 views

Mengshen Wireless Door Alarm M70 Security Breach

The Mengshen Wireless Door Alarm M70 is a wireless alarm from Mengshen. A security vulnerability exists in Mengshen Wireless Door Alarm M70 version 2024-05-24, which originates from the ability to bypass authentication via the capture replay method...

6.8CVSS7AI score0.00316EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/07/15 12:0 a.m.15 views

CVE-2024-37016

Mengshen Wireless Door Alarm M70 2024-05-24 allows Authentication Bypass via a Capture-Replay approach...

0.00316EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/07/15 12:0 a.m.13 views

CVE-2024-37016

Mengshen Wireless Door Alarm M70 2024-05-24 allows Authentication Bypass via a Capture-Replay approach...

6.6AI score0.00316EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/07/15 12:0 a.m.2 views

PT-2024-27244 · Mengshen · Mengshen Wireless Door Alarm M70

Name of the Vulnerable Software and Affected Versions: Mengshen Wireless Door Alarm M70 affected versions not specified Description: The issue allows for authentication bypass via a capture-replay approach. Recommendations: At the moment, there is no information about a newer version that contain...

6.8CVSS7.2AI score0.00316EPSS
Exploits0References5
CVE
CVE
added 2024/07/15 12:0 a.m.37 views

CVE-2024-37016

The vulnerability CVE-2024-37016 affects Mengshen Wireless Door Alarm M70. The provided documents describe an authentication bypass achieved via a capture-replay approach (no exploit details disclosed). The affected device is the M70 series; remediation status and patched versions are not specifi...

6.8CVSS7AI score0.00316EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2024/07/13 2:47 a.m.3 views

SUSE CVE-2024-6610

Form validation popups could capture escape key presses. Therefore, spamming form validation messages could be used to prevent users from exiting full-screen mode. This vulnerability affects Firefox 128 and Thunderbird 128...

4.7CVSS6.3AI score0.00342EPSS
Exploits0References7
Citrix
Citrix
added 2024/07/13 12:0 a.m.8 views

How to Prepare Provisioning Services 7.x Master Target Device to be Captured on a vDisk

This article provides the recommended procedure for preparing Provisioning Services 7.x Master Target Device to be captured on a vDisk...

7AI score
Exploits0
Rows per page
Query Builder