2030 matches found
Astra Linux - уязвимость в chromium
Using “after free” in DevTools in Google Chrome before version 122.0.6261.57 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: Medium...
Astra Linux - уязвимость в chromium
Type confusion in DevTools in Google Chrome prior to 110.0.5481.77 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via UI interactions. Chromium security severity: Medium...
Astra Linux - уязвимость в chromium
Before version 102.0.5005.61, using the out-of-bounds read feature in DevTools in Google Chrome allowed a remote attacker to perform an out-of-bounds memory read through specific user interactions...
Astra Linux - уязвимость в chromium
Insufficient policy enforcement in DevTools in Google Chrome prior to 110.0.5481.77 allowed a remote attacker to bypass the same-origin policy and proxy settings through a crafted HTML page. Chromium security severity: Low...
Astra Linux - уязвимость в chromium
In DevTools in Google Chrome before version 126.0.6478.182, it was possible for an attacker to convince a user to install a malicious extension, allowing them to inject scripts or HTML into a privileged page through a crafted Chrome Extension. Chromium security severity: High...
Astra Linux - уязвимость в firefox
If a user saved a response from the Network tab in Devtools using the “Save As” context menu option, the file might not have been saved with the .download file extension. This could have allowed the user to run a malicious executable inadvertently. This vulnerability has been fixed in Firefox 140...
Astra Linux - уязвимость в chromium
Inappropriate implementation in DevTools in Google Chrome prior to 136.0.7103.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass discretionary access control via a crafted HTML page. Chromium security severity: Low...
Astra Linux - уязвимость в chromium
A heap buffer overflow in DevTools in Google Chrome prior to version 97.0.4692.99 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption through a crafted HTML page...
Astra Linux - уязвимость в chromium
Inappropriate implementation in DevTools in Google Chrome prior to 97.0.4692.71 allowed an attacker who convinced a user to install a malicious extension to potentially allow the extension to escape the sandbox via a crafted HTML page...
Astra Linux - уязвимость в chromium
Leakage of side-channel information in DevTools in Google Chrome prior to version 94.0.4606.54 allowed a remote attacker to bypass site isolation through a crafted HTML page...
Astra Linux - уязвимость в chromium
Using “after free” in DevTools in Google Chrome before version 92.0.4515.107 allowed an attacker who convinced a user to open DevTools to potentially exploit heap corruption through specific user gestures...
Astra Linux - уязвимость в chromium
Insufficient data validation in DevTools in Google Chrome prior to 121.0.6167.85 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. Chromium security severity: High...
Astra Linux - уязвимость в chromium
Insufficient data validation in DevTools in Google Chrome prior to 136.0.7103.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass discretionary access control via a crafted HTML page. Chromium security severity: Medium...
Astra Linux - уязвимость в chromium
Before version 101.0.4951.41, using free after development tools in Google Chrome allowed a remote attacker to potentially exploit heap corruption through specific and direct user interactions...
Astra Linux - уязвимость в firefox, thunderbird
A malicious devtools extension could have been used to escalate privileges. This vulnerability affects Firefox 122, Firefox ESR 115.7, and Thunderbird 115.7...
Astra Linux - уязвимость в chromium
The use of “after free” in DevTools in Google Chrome before version 111.0.5563.64 allowed a remote attacker who had convinced the user to engage in direct UI interaction to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: High...
Astra Linux - уязвимость в chromium
Inappropriate implementation in DevTools in Google Chrome prior to 118.0.5993.70 allowed an attacker who convinced a user to install a malicious extension to bypass discretionary access control via a crafted Chrome Extension. Chromium security severity: Medium...
Astra Linux - уязвимость в chromium
Before version 113.0.5672.126, using free after in DevTools in Google Chrome allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: High...
Astra Linux - уязвимость в chromium
Type confusion in DevTools in Google Chrome prior to 111.0.5563.64 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted UI interaction. Chromium security severity: Low...
Astra Linux - уязвимость в chromium
Using “after free” in DevTools in Google Chrome before version 130.0.6723.58 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption through a crafted Chrome Extension. Chromium security severity: Medium...