2060 matches found
CVE-2024-6778
Race in DevTools in Google Chrome prior to 126.0.6478.182 allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via a crafted Chrome Extension. Chromium security severity: High...
CVE-2024-6778
The CVE-2024-6778 entry concerns a race in Chrome/Chromium DevTools that allowed an attacker, by convincing a user to install a crafted Chrome Extension, to inject scripts or HTML into a privileged page. Affected software is Google Chrome/Chromium (DevTools component); the underlying issue is a D...
CVE-2024-6778
Race in DevTools in Google Chrome prior to 126.0.6478.182 allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via a crafted Chrome Extension. Chromium security severity: High...
CVE-2024-6778
Race in DevTools in Google Chrome prior to 126.0.6478.182 allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via a crafted Chrome Extension. Chromium security severity: High...
Google Chrome 安全漏洞
Google Chrome is a web browser from Google, an American company. Google Chrome has a security vulnerability that stems from a post-release usage issue found in the DevTools module. No details of the vulnerability are provided at this time...
Google Chrome < 124.0.6367.182 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 124.0.6367.182. It is, therefore, affected by multiple vulnerabilities as referenced in the 202407stable-channel-update-for-desktop advisory. - Inappropriate implementation in V8 in Google Chrome prior to 126.0.6478.182...
Google Chrome < 126.0.6478.182 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 126.0.6478.182. It is, therefore, affected by multiple vulnerabilities as referenced in the 202407stable-channel-update-for-desktop advisory. - Out of bounds memory access in V8 in Google Chrome prior to 126.0.6478.182...
Google Chrome < 126.0.6478.182 Multiple Vulnerabilities
The version of Google Chrome installed on the remote macOS host is prior to 126.0.6478.182. It is, therefore, affected by multiple vulnerabilities as referenced in the 202407stable-channel-update-for-desktop advisory. - Out of bounds memory access in V8 in Google Chrome prior to 126.0.6478.182...
PT-2024-7566 · Google +2 · Google Chrome +2
Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 130.0.6723.58 Microsoft Edge affected versions not specified Description: The issue is related to insufficient data validation in DevTools, allowing a remote attacker to execute arbitrary code via a crafted HTM...
Malicious code in react-devtools-fusebox (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 023ce7599294ef47cf0b24d7424bada9cfa75c0c3ac1f94d0a2a23e0e4f55d6b The OpenSSF Package Analysis project identified 'react-devtools-fusebox' @ 2.1.1 npm as malicious. It is considered malicious because: - The...
MAL-2024-7418 Malicious code in react-devtools-fusebox (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 023ce7599294ef47cf0b24d7424bada9cfa75c0c3ac1f94d0a2a23e0e4f55d6b The OpenSSF Package Analysis project identified 'react-devtools-fusebox' @ 2.1.1 npm as malicious. It is considered malicious because: - The...
Astra Linux – Vulnerability in Chromium
Inappropriate implementation in DevTools in Google Chrome prior to 126.0.6478.54 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. Chromium security severity: High...
MAL-2024-2439 Malicious code in grpc-web-devtoolssss (npm)
--- -= Per source details. Do not edit below this line.=-...
The vulnerability of the DevTools suite for web development in Microsoft Edge and Google Chrome browsers allows attackers to compromise the system.
The vulnerability of the DevTools suite for web development in Microsoft Edge and Google Chrome relates to improper security checks for standard elements. Exploiting this vulnerability can allow a malicious actor to compromise the system using a specially created Chrome extension...
Updated chromium-browser-stable packages fix security vulnerabilities
The chromium-browser-stable package has been updated to the 126.0.6478.61 release. It includes 21 security fixes. Some of them are: High CVE-2024-5830: Type Confusion in V8. Reported by Man Yue Mo of GitHub Security Lab on 2024-05-24 High CVE-2024-5831: Use after free in Dawn. Reported by wgslfuz...
Chromium: CVE-2024-5836 Inappropriate Implementation in DevTools
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
SUSE CVE-2024-5836
Inappropriate Implementation in DevTools in Google Chrome prior to 126.0.6478.54 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. Chromium security severity: High...
CVE-2024-5836
Inappropriate Implementation in DevTools in Google Chrome prior to 126.0.6478.54 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. Chromium security severity: High...
DEBIAN-CVE-2024-5836
Inappropriate Implementation in DevTools in Google Chrome prior to 126.0.6478.54 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. Chromium security severity: High...
CVE-2024-5836
Inappropriate Implementation in DevTools in Google Chrome prior to 126.0.6478.54 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. Chromium security severity: High...