703 matches found
The vulnerability of the Extensions component of Google Chrome and Microsoft Edge browsers allows attackers to enhance their privileges.
The vulnerability of the Extensions component in Google Chrome and Microsoft Edge exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability can allow a malicious actor to enhance their privileges through a specially created HTML page...
The vulnerability of the Payments component in Google Chrome and Microsoft Edge allows a hacker to bypass existing security restrictions and perform a substitution of the user interface.
The vulnerability of the Payments component in Google Chrome and Microsoft Edge involves exploiting authentication bypass techniques. Exploiting this vulnerability allows a malicious actor to circumvent existing security restrictions and replace the user interface with a specially created HTML pa...
The vulnerability of Google Chrome’s Blink rendering module allows a hacker to replace the user interface.
The vulnerability of Google Chrome’s Blink rendering module is related to improper implementation. Exploiting this vulnerability allows a remote attacker to replace the user interface with a specially created HTML page...
Astra Linux – Vulnerability in Chromium
A heap buffer overflow in Skia in Google Chrome prior to version 128.0.6613.113 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: High...
Astra Linux – Vulnerability in Chromium
Inappropriate implementation in HTML in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...
The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers is related to type mixing errors. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information through a specially crafte...
The vulnerability of the WebAuthentication component in Google Chrome and Microsoft Edge browsers allows attackers to enhance their privileges.
The vulnerability of the WebAuthentication component in Google Chrome and Microsoft Edge relates to improperly implemented security checks for standard elements. Exploiting this vulnerability can allow attackers to enhance their privileges through a specially created HTML page...
The vulnerability of the user interfaces of Google Chrome and Microsoft Edge allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the user interfaces of Google Chrome and Microsoft Edge relates to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information through a specially created...
The vulnerability of the Permissions control element in Google Chrome and Microsoft Edge allows a hacker to replace the user interface.
The vulnerability of the Permissions control element in Google Chrome and Microsoft Edge is related to improper limitation of the layers or frames that are displayed in the user interface. Exploiting this vulnerability could allow a malicious actor to replace the user interface with a specially...
The vulnerability of JavaScript script handlers in Microsoft Edge and Google Chrome browsers allows attackers to execute arbitrary code.
The vulnerability of JavaScript script handlers in Microsoft Edge and Google Chrome browsers is related to type mixing errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a specially created HTML page from a remote location...
DEBIAN-CVE-2024-8909
Inappropriate implementation in UI in Google Chrome on iOS prior to 129.0.6668.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...
The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers allows attackers to corrupt dynamic memory.
Vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers. Exploiting this vulnerability can allow a remote attacker to corrupt dynamic memory through a specially crafted HTML page...
SUSE CVE-2021-21155
Heap buffer overflow in Tab Strip in Google Chrome on Windows prior to 88.0.4324.182 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page...
The vulnerability in the Google Chrome web browser, related to reading data beyond the allowed buffer size, allows a hacker to gain access to confidential data.
The vulnerability in the Google Chrome web browser relates to reading data from the buffer beyond its allowable limits. Exploiting this vulnerability could allow a malicious actor to gain access to confidential data through a specially created HTML page...
The vulnerability of Google Chrome’s Skia graphics library allows a hacker to escape from the isolated software environment.
The vulnerability of Google Chrome’s Skia graphics library is related to the improper implementation of the authentication algorithm. Exploiting this vulnerability allows a malicious actor to escape from a isolated software environment using a specially created HTML page...
The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers allows attackers to execute arbitrary code.
The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers is related to buffer overflow in the “cull” mechanism. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially crafted HTML page...
DEBIAN-CVE-2024-7972
Inappropriate implementation in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Chromium security severity: Medium...
DEBIAN-CVE-2024-7968
Use after free in Autofill in Google Chrome prior to 128.0.6613.84 allowed a remote attacker who had convinced the user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
The vulnerability of the WebTransport interface in Google Chrome and Microsoft Edge allows a hacker to execute arbitrary code.
The vulnerability of the WebTransport interface in Google Chrome and Microsoft Edge relates to memory-walking attacks. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially created HTML page...
The vulnerability of the Sign-In component in Google Chrome allows a perpetrator to carry out cross-site scripting attacks.
The vulnerability of the Sign-In component in Google Chrome relates to the ability to circumvent navigation restrictions. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks using a specially created HTML page...