CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

670 matches found

RedHat Linux•added 2015/06/25 8:9 a.m.•2 views

chromium-browser: Scheme validation error in WebUI

content/browser/webui/contentwebuicontrollerfactory.cc in Google Chrome before 43.0.2357.130 does not properly consider the scheme in determining whether a URL is associated with a WebUI SiteInstance, which allows remote attackers to bypass intended access restrictions via a similar URL, as...

5CVSS7.4AI score0.01489EPSS

Exploits0References5

ThreatPost•added 2013/11/21 12:48 p.m.•12 views

Gaming Company Settles on Bitcoin Mining Allegations

The ESEA League, an online competitive gaming community, has decided to settle with the state of New Jersey after the acting attorney general there alleged that the gaming community operator infected user-machines with malware designed to mine Bitcoins. The league is owned and managed by E-Sports...

0.5AI score

Exploits0

The Hacker News•added 2012/08/19 7:0 p.m.•10 views

AMD Blog Hacked, Database leaked on Internet

A team of Hackers called, "r00tBeer Security Team" today hack into official blog of Advanced Micro Devices AMD which is a American multinational semiconductor company. AMD is the second-largest global supplier of microprocessors based on the x86 architecture and also one of the largest suppliers ...

7.5AI score

Exploits0

ATTACKERKB•added 2012/03/10 7:55 p.m.•2 views

CVE-2011-3047

The GPU process in Google Chrome before 17.0.963.79 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption by leveraging an error in the plug-in loading mechanism...

9.3CVSS8.9AI score0.03382EPSS

Exploits0References12

OSV•added 2011/04/15 7:55 p.m.•3 views

UBUNTU-CVE-2011-1301

Use-after-free vulnerability in the GPU process in Google Chrome before 10.0.648.205 allows remote attackers to execute arbitrary code via unknown vectors...

9.3CVSS6.2AI score0.03601EPSS

Exploits2References2

OSV•added 2011/04/15 7:55 p.m.•2 views

UBUNTU-CVE-2011-1302

Heap-based buffer overflow in the GPU process in Google Chrome before 10.0.648.205 allows remote attackers to execute arbitrary code via unknown vectors...

9.3CVSS6.4AI score0.03257EPSS

Exploits1References2

ThreatPost•added 2011/04/15 2:8 p.m.•33 views

New Version of Google Chrome Fixes Flash Bug, Three Critical GPU Flaws

Google has released a new version of its Chrome browser that includes not only an updated version of Adobe Flash that fixes a critical bug, but also patches for three critical vulnerabilities in the browser’s GPU process. The new version of Chrome, which is version 10.0.648.205, includes the firs...

10CVSS1.5AI score0.03601EPSS

Exploits2References6

ThreatPost•added 2011/02/08 7:18 p.m.•9 views

Microsoft Ships 12 Bulletins in February's Patch Tuesday

Microsoft addressed 22 flaws with 12 separate bulletins in February’s edition of Patch Tuesday, including three bulletins that were rated critical with the remaining nine rated as important. Among the programs affected are Microsoft Windows, Internet Explorer, Office, Visual Studio, and IIS. The...

0.6AI score

Exploits0References12

Ubuntu•added 2009/11/12 10:6 p.m.•70 views

USN-859-1: OpenJDK vulnerabilities

Dan Kaminsky discovered that SSL certificates signed with MD2 could be spoofed given enough time. As a result, an attacker could potentially create a malicious trusted certificate to impersonate another site. This update handles this issue by completely disabling MD2 for certificate validation in...

9.3CVSS7.4AI score0.65461EPSS

Exploits13