260 matches found
EUVD-2022-42817
Malicious code in bioql PyPI...
EUVD-2022-42818
Malicious code in bioql PyPI...
EUVD-2022-25144
Malicious code in bioql PyPI...
Astra Linux - уязвимость в chromium
Inappropriate implementation in File System API in Google Chrome on Windows prior to 97.0.4692.71 allowed a remote attacker to obtain potentially sensitive information via a crafted HTML page. Chrome security severity: High...
CVE-2024-24957
Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these...
CVE-2024-24955
Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these...
PT-2024-3884 · Automationdirect · P3-550E
Name of the Vulnerable Software and Affected Versions: AutomationDirect P3-550E version 1.2.10.9 Description: The issue is related to out-of-bounds write vulnerabilities in the Programming Software Connection FileSystem API functionality. Specially crafted network packets can lead to heap-based...
CVE-2023-32004
A vulnerability has been discovered in Node.js version 20, specifically within the experimental permission model. This flaw relates to improper handling of Buffers in file system APIs causing a traversal path to bypass when verifying file permissions. This vulnerability affects all users using th...
SUSE CVE-2022-0337
Inappropriate implementation in File System API in Google Chrome on Windows prior to 97.0.4692.71 allowed a remote attacker to obtain potentially sensitive information via a crafted HTML page. Chrome security severity: High...
CVE-2023-2311
Insufficient policy enforcement in File System API in Google Chrome prior to 112.0.5615.49 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. Chromium security severity: Medium...
CVE-2023-2311
Insufficient policy enforcement in File System API in Google Chrome prior to 112.0.5615.49 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. Chromium security severity: Medium...
DEBIAN-CVE-2023-2311
Insufficient policy enforcement in File System API in Google Chrome prior to 112.0.5615.49 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. Chromium security severity: Medium...
CVE-2023-2311
Insufficient policy enforcement in File System API in Google Chrome prior to 112.0.5615.49 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. Chromium security severity: Medium...
CVE-2023-2311
Insufficient policy enforcement in File System API in Google Chrome prior to 112.0.5615.49 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. Chromium security severity: Medium...
CVE-2023-2311
Insufficient policy enforcement in File System API in Google Chrome prior to 112.0.5615.49 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. Chromium security severity: Medium...
CVE-2023-2311
CVE-2023-2311 concerns Google Chrome/Chromium where insufficient policy enforcement in the File System API before 112.0.5615.49 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. Connected sources (e.g., Astra Linux bulletin and Fedora advisories) confirm the iss...
Mozilla Firefox 后置链接漏洞
Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla Firefox prior to version 115, which stems from insufficient validation of symbolic links in the file system API. An attacker could exploit the vulnerability t...
PT-2023-4142 · Google +2 · Google Chrome +2
Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 112.0.5615.49 Description: The issue is related to insufficient policy enforcement in the File System API of Google Chrome, allowing a remote attacker to bypass existing filesystem restrictions. This can be...
Google Chrome Security Update (stable-channel-update-for-desktop_21-2021-09) - Linux
Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...
Authentication Bypass
Google Chrome is vulnerable to Authentication Bypass. The vulnerability exists due to the inappropriate implementation in in File System API, which allows an attacker to bypass file system restrictions via a crafted HTML page...