Design/Logic Flaw

Use after free in DevTools in Google Chrome prior to 113.0.5672.126 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

CVE-2023-2723

Use after free in DevTools in Google Chrome prior to 113.0.5672.126 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

CVE-2023-2723

Use after free in DevTools in Google Chrome prior to 113.0.5672.126 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

CVE-2023-2723

Use after free in DevTools in Google Chrome prior to 113.0.5672.126 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

CVE-2023-2723

CVE-2023-2723 relates to a use-after-free in Chrome/Chromium DevTools prior to 113.0.5672.126. A remote attacker who already compromised the renderer could trigger heap corruption via a crafted HTML page. The vulnerability has a high security impact (C/H/I/A) and a network attack vector with user...

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser from Google, an American company. A memory misreference vulnerability exists in versions prior to Google Chrome 113.0.5672.126, which stems from a confusion in the DevTools instruction responsible for freeing memory. An attacker could use this vulnerability to...

Google Chrome < 113.0.5672.126 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 113.0.5672.126. It is, therefore, affected by multiple vulnerabilities as referenced in the 202305stable-channel-update-for-desktop16 advisory. - Inappropriate implementation in WebApp Installs in Google Chrome prior to...

chromium -- multiple vulnerabilities

Chrome Releases reports: This update includes 12 security fixes: 1444360 Critical CVE-2023-2721: Use after free in Navigation. Reported by Guang Gong of Alpha Lab, Qihoo 360 on 2023-05-10 1400905 High CVE-2023-2722: Use after free in Autofill UI. Reported by Rong Jian of VRI on 2022-12-14 1435166...

Google Chrome < 113.0.5672.126 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 113.0.5672.126. It is, therefore, affected by multiple vulnerabilities as referenced in the 202305stable-channel-update-for-desktop16 advisory. - Inappropriate implementation in WebApp Installs in Google Chrome prior to...

PT-2023-3583 · Google +3 · Google Chrome +3

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 113.0.5672.126 Description: The issue is related to a use after free in DevTools, allowing a remote attacker who has compromised the renderer process to potentially exploit heap corruption via a crafted HTML...

Malicious code in com.google.devtools.atsconsole.controller.proto (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ac391c6f367ea013279ad73de19d7f7829b286164a9c63b7914d2d9fe41310a5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

GLSA-202305-13 : Mozilla Thunderbird: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202305-13 Mozilla Thunderbird: Multiple Vulnerabilities - An out of date library libusrsctp contained vulnerabilities that could potentially be exploited. This vulnerability affects Firefox This bug only affects Thunderbird for...

The vulnerability of the DevTools set of tools for web development in the Google Chrome web browser allows a hacker to execute arbitrary code.

The vulnerability of the DevTools suite for web development in the Google Chrome web browser relates to the use of memory after it is released. Exploiting this vulnerability could allow an attacker to execute arbitrary code using a specially created HTML page...

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser from Google, an American company. An input validation error vulnerability exists in versions of Google Chrome prior to 106.0.5249.62, which stems from insufficient DevTools data validation. A remote attacker can exploit this vulnerability by sending a malicious HTTP...

OPENSUSE-SU-2023:0093-1 Security update for chromium

This update for chromium fixes the following issues: Chromium 112.0.5615.165 boo1210618: CVE-2023-2133: Out of bounds memory access in Service Worker API CVE-2023-2134: Out of bounds memory access in Service Worker API CVE-2023-2135: Use after free in DevTools CVE-2023-2136: Integer overflow in...

Google Chrome Memory Misreference Vulnerability

Google Chrome is a web browser from Google, an American company. A memory misreference vulnerability exists in versions prior to Google Chrome 112.0.5615.137, which stems from a confusion in the directive responsible for freeing memory in DevTools. An attacker could use this vulnerability to caus...

Chromium: CVE-2023-2135 Use after free in DevTools

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

SUSE CVE-2023-2135

Use after free in DevTools in Google Chrome prior to 112.0.5615.137 allowed a remote attacker who convinced a user to enable specific preconditions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

Fedora 38 : chromium (2023-df075a7f85)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-df075a7f85 advisory. update to 112.0.5615.121. Fixes the following security issues: CVE-2023-2004 CVE-2023-2133 CVE-2023-2134 CVE-2023-2135 CVE-2023-2136 CVE-2023-2137...

chromium -- multiple vulnerabilities

Chrome Releases reports: This update includes 8 security fixes: 1429197 High CVE-2023-2133: Out of bounds memory access in Service Worker API. Reported by Rong Jian of VRI on 2023-03-30 1429201 High CVE-2023-2134: Out of bounds memory access in Service Worker API. Reported by Rong Jian of VRI on...