Lucene search
K

703 matches found

BDU FSTEC
BDU FSTEC
added 2025/01/27 12:0 a.m.7 views

The vulnerability of the Extensions component of Google Chrome and Microsoft Edge browsers allows attackers to enhance their privileges.

The vulnerability of the Extensions component in Google Chrome and Microsoft Edge exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability can allow a malicious actor to enhance their privileges through a specially created HTML page...

10CVSS7.5AI score0.00445EPSS
Exploits1References11Affected Software8
BDU FSTEC
BDU FSTEC
added 2025/01/27 12:0 a.m.7 views

The vulnerability of the Payments component in Google Chrome and Microsoft Edge allows a hacker to bypass existing security restrictions and perform a substitution of the user interface.

The vulnerability of the Payments component in Google Chrome and Microsoft Edge involves exploiting authentication bypass techniques. Exploiting this vulnerability allows a malicious actor to circumvent existing security restrictions and replace the user interface with a specially created HTML pa...

7.8CVSS6.5AI score0.00333EPSS
Exploits1References11Affected Software8
BDU FSTEC
BDU FSTEC
added 2024/11/26 12:0 a.m.8 views

The vulnerability of Google Chrome’s Blink rendering module allows a hacker to replace the user interface.

The vulnerability of Google Chrome’s Blink rendering module is related to improper implementation. Exploiting this vulnerability allows a remote attacker to replace the user interface with a specially created HTML page...

5CVSS5.5AI score0.00322EPSS
Exploits0References9Affected Software4
AstraLinux
AstraLinux
added 2024/11/23 3:4 a.m.6 views

Astra Linux – Vulnerability in Chromium

A heap buffer overflow in Skia in Google Chrome prior to version 128.0.6613.113 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: High...

8.8CVSS7.6AI score0.00384EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2024/11/23 3:4 a.m.6 views

Astra Linux – Vulnerability in Chromium

Inappropriate implementation in HTML in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS7.3AI score0.00443EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/10/24 12:0 a.m.9 views

The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers is related to type mixing errors. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information through a specially crafte...

10CVSS7.5AI score0.00768EPSS
Exploits1References11Affected Software7
BDU FSTEC
BDU FSTEC
added 2024/10/23 12:0 a.m.5 views

The vulnerability of the WebAuthentication component in Google Chrome and Microsoft Edge browsers allows attackers to enhance their privileges.

The vulnerability of the WebAuthentication component in Google Chrome and Microsoft Edge relates to improperly implemented security checks for standard elements. Exploiting this vulnerability can allow attackers to enhance their privileges through a specially created HTML page...

7.8CVSS7.7AI score0.00389EPSS
Exploits0References9Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/10/20 12:0 a.m.6 views

The vulnerability of the user interfaces of Google Chrome and Microsoft Edge allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the user interfaces of Google Chrome and Microsoft Edge relates to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information through a specially created...

10CVSS5.5AI score0.00377EPSS
Exploits1References8Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/10/20 12:0 a.m.10 views

The vulnerability of the Permissions control element in Google Chrome and Microsoft Edge allows a hacker to replace the user interface.

The vulnerability of the Permissions control element in Google Chrome and Microsoft Edge is related to improper limitation of the layers or frames that are displayed in the user interface. Exploiting this vulnerability could allow a malicious actor to replace the user interface with a specially...

5CVSS5.5AI score0.00286EPSS
Exploits0References11Affected Software6
BDU FSTEC
BDU FSTEC
added 2024/09/30 12:0 a.m.9 views

The vulnerability of JavaScript script handlers in Microsoft Edge and Google Chrome browsers allows attackers to execute arbitrary code.

The vulnerability of JavaScript script handlers in Microsoft Edge and Google Chrome browsers is related to type mixing errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a specially created HTML page from a remote location...

10CVSS7.8AI score0.05811EPSS
Exploits1References12Affected Software6
OSV
OSV
added 2024/09/17 9:15 p.m.2 views

DEBIAN-CVE-2024-8909

Inappropriate implementation in UI in Google Chrome on iOS prior to 129.0.6668.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS7.3AI score0.00313EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/09/17 12:0 a.m.11 views

The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers allows attackers to corrupt dynamic memory.

Vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers. Exploiting this vulnerability can allow a remote attacker to corrupt dynamic memory through a specially crafted HTML page...

10CVSS7.2AI score0.17227EPSS
Exploits2References13Affected Software7
SUSE CVE
SUSE CVE
added 2024/09/13 4:5 a.m.4 views

SUSE CVE-2021-21155

Heap buffer overflow in Tab Strip in Google Chrome on Windows prior to 88.0.4324.182 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page...

9.6CVSS9.5AI score0.01324EPSS
Exploits1References6
BDU FSTEC
BDU FSTEC
added 2024/09/13 12:0 a.m.5 views

The vulnerability in the Google Chrome web browser, related to reading data beyond the allowed buffer size, allows a hacker to gain access to confidential data.

The vulnerability in the Google Chrome web browser relates to reading data from the buffer beyond its allowable limits. Exploiting this vulnerability could allow a malicious actor to gain access to confidential data through a specially created HTML page...

7.8CVSS6.7AI score0.00247EPSS
Exploits1References7Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/08/27 12:0 a.m.8 views

The vulnerability of Google Chrome’s Skia graphics library allows a hacker to escape from the isolated software environment.

The vulnerability of Google Chrome’s Skia graphics library is related to the improper implementation of the authentication algorithm. Exploiting this vulnerability allows a malicious actor to escape from a isolated software environment using a specially created HTML page...

10CVSS7.7AI score0.00369EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/08/26 12:0 a.m.7 views

The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers allows attackers to execute arbitrary code.

The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers is related to buffer overflow in the “cull” mechanism. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially crafted HTML page...

10CVSS7.6AI score0.00639EPSS
Exploits0References12Affected Software4
OSV
OSV
added 2024/08/21 9:15 p.m.2 views

DEBIAN-CVE-2024-7972

Inappropriate implementation in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS7.6AI score0.00546EPSS
Exploits0References1
OSV
OSV
added 2024/08/21 9:15 p.m.2 views

DEBIAN-CVE-2024-7968

Use after free in Autofill in Google Chrome prior to 128.0.6613.84 allowed a remote attacker who had convinced the user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.8AI score0.00533EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/08/09 12:0 a.m.7 views

The vulnerability of the WebTransport interface in Google Chrome and Microsoft Edge allows a hacker to execute arbitrary code.

The vulnerability of the WebTransport interface in Google Chrome and Microsoft Edge relates to memory-walking attacks. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially created HTML page...

7.8CVSS7.8AI score0.00743EPSS
Exploits0References10Affected Software6
BDU FSTEC
BDU FSTEC
added 2024/07/29 12:0 a.m.9 views

The vulnerability of the Sign-In component in Google Chrome allows a perpetrator to carry out cross-site scripting attacks.

The vulnerability of the Sign-In component in Google Chrome relates to the ability to circumvent navigation restrictions. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks using a specially created HTML page...

7.8CVSS6.3AI score0.00293EPSS
Exploits1References6Affected Software3
Rows per page
Query Builder