Lucene search
K

5122 matches found

Openbugbounty
Openbugbounty
added 2022/09/28 2:44 a.m.18 views

capture-design.com Cross Site Scripting vulnerability OBB-2959942

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/09/28 2:43 a.m.14 views

capture-data.com Cross Site Scripting vulnerability OBB-2959941

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
CNNVD
CNNVD
added 2022/09/28 12:0 a.m.5 views

Smart eVision 安全漏洞

Smart eVision Information Technology Smart eVision is a business intelligence platform of China Union Quan Information Technology Smart eVision Information Technology Company. It can integrate business management rooms, dashboards, reports, and input interfaces for business operations management...

5.3CVSS5.8AI score0.00577EPSS
Exploits0References2
OSV
OSV
added 2022/09/26 4:15 p.m.2 views

DEBIAN-CVE-2022-3043

Heap buffer overflow in Screen Capture in Google Chrome on Chrome OS prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS9.2AI score0.00653EPSS
Exploits0References1
OSV
OSV
added 2022/09/26 4:15 p.m.13 views

CVE-2022-3043

Heap buffer overflow in Screen Capture in Google Chrome on Chrome OS prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS9.2AI score
Exploits0References4
OSV
OSV
added 2022/09/26 4:15 p.m.2 views

UBUNTU-CVE-2022-3043

Heap buffer overflow in Screen Capture in Google Chrome on Chrome OS prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.6AI score0.00653EPSS
Exploits0References2
Prion
Prion
added 2022/09/26 4:15 p.m.15 views

Heap overflow

Heap buffer overflow in Screen Capture in Google Chrome on Chrome OS prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page...

6.8CVSS8.6AI score0.00653EPSS
Exploits0References4Affected Software2
CVE
CVE
added 2022/09/26 3:1 p.m.95 views

CVE-2022-3043

The CVE-2022-3043 entry describes a heap/buffer overflow in Screen Capture for Google Chrome on Chrome OS, prior to version 105.0.5195.52. The vulnerability could be triggered by a crafted HTML page and user interaction, potentially enabling heap corruption and remote code execution. Affected pro...

8.8CVSS8.6AI score0.00653EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2022/09/26 3:1 p.m.39 views

CVE-2022-3043

Heap buffer overflow in Screen Capture in Google Chrome on Chrome OS prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS9.4AI score0.00653EPSS
Exploits0
OSV
OSV
added 2022/09/23 7:15 p.m.0 views

CVE-2022-32848

A logic issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.6.8, macOS Monterey 12.5. An app may be able to capture a user’s screen...

5.5CVSS5.8AI score0.00562EPSS
Exploits0References2
NVD
NVD
added 2022/09/23 7:15 p.m.19 views

CVE-2022-32848

A logic issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.6.8, macOS Monterey 12.5. An app may be able to capture a user’s screen...

5.5CVSS0.00562EPSS
Exploits0References2
Prion
Prion
added 2022/09/23 7:15 p.m.15 views

Design/Logic Flaw

A logic issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.6.8, macOS Monterey 12.5. An app may be able to capture a user’s screen...

1.9CVSS6AI score0.00562EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/09/23 6:59 p.m.7 views

CVE-2022-32848

A logic issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.6.8, macOS Monterey 12.5. An app may be able to capture a user’s screen...

4.6AI score0.00562EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/09/23 6:59 p.m.23 views

CVE-2022-32848

A logic issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.6.8, macOS Monterey 12.5. An app may be able to capture a user’s screen...

6.3AI score0.00562EPSS
Exploits0References2
OSV
OSV
added 2022/09/22 12:0 a.m.16 views

GHSA-GHQ7-85HP-FH76 CSRF vulnerability in Jenkins Worksoft Execution Manager Plugin allows capturing credentials

Worksoft Execution Manager Plugin 10.0.3.503 and earlier does not perform a permission check in a method implementing form validation. This allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another metho...

4.2CVSS8.7AI score0.00418EPSS
Exploits0References3
OSV
OSV
added 2022/09/21 4:15 p.m.7 views

CVE-2022-41250

A missing permission check in Jenkins SCM HttpClient Plugin 1.5 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified HTTP server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

6.5CVSS5.8AI score0.00536EPSS
Exploits0References2
OSV
OSV
added 2022/09/21 4:15 p.m.2 views

CVE-2022-41245

A cross-site request forgery CSRF vulnerability in Jenkins Worksoft Execution Manager Plugin 10.0.3.503 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

8.8CVSS5.8AI score0.00418EPSS
Exploits0References1
NVD
NVD
added 2022/09/21 4:15 p.m.19 views

CVE-2022-41254

Missing permission checks in Jenkins CONS3RT Plugin 1.0.0 and earlier allow attackers with Overall/Read permission to connect to an attacker-specified HTTP server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

6.5CVSS0.00658EPSS
Exploits0References2
OSV
OSV
added 2022/09/21 4:15 p.m.5 views

CVE-2022-41246

A missing permission check in Jenkins Worksoft Execution Manager Plugin 10.0.3.503 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

6.5CVSS5.8AI score0.00588EPSS
Exploits0References1
OSV
OSV
added 2022/09/21 4:15 p.m.17 views

CVE-2022-41254

Missing permission checks in Jenkins CONS3RT Plugin 1.0.0 and earlier allow attackers with Overall/Read permission to connect to an attacker-specified HTTP server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

6.5CVSS6.4AI score
Exploits0References2
Rows per page
Query Builder