CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

968 matches found

CVE•added 2023/10/11 10:28 p.m.•336 views

CVE-2023-5481

CVE-2023-5481 : Affected component is Google Chrome/Chromium Downloads. The root cause is an inappropriate implementation that permits a remote attacker to spoof the security UI via a crafted HTML page, leading to a spoofing risk. The vulnerability is associated with Chrome/Chromium versions prio...

6.5CVSS6.3AI score0.00745EPSS

Exploits0References6Affected Software1

Cvelist•added 2023/10/11 10:28 p.m.•19 views

CVE-2023-5483

Inappropriate implementation in Intents in Google Chrome prior to 118.0.5993.70 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Medium...

6.7AI score0.00818EPSS

Exploits0References6

Cvelist•added 2023/10/11 10:28 p.m.•38 views

CVE-2023-5475

Inappropriate implementation in DevTools in Google Chrome prior to 118.0.5993.70 allowed an attacker who convinced a user to install a malicious extension to bypass discretionary access control via a crafted Chrome Extension. Chromium security severity: Medium...

7AI score0.00618EPSS

Exploits0References8

CVE•added 2023/10/11 10:28 p.m.•264 views

CVE-2023-5484

The CVE-2023-5484 entry concerns Chrome/Chromium where an inappropriate implementation in the Navigation UI allows a remote attacker to spoof security UI via a crafted HTML page. Affected product: Google Chrome/Chromium browser. Root cause: navigation handling in Chromium before 118.0.5993.70 per...

6.5CVSS6.3AI score0.00997EPSS

Exploits0References8Affected Software1

Debian CVE•added 2023/10/11 10:28 p.m.•24 views

CVE-2023-5487

Inappropriate implementation in Fullscreen in Google Chrome prior to 118.0.5993.70 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension. Chromium security severity: Medium...

6.5CVSS6.9AI score0.00635EPSS

Exploits0

CVE•added 2023/10/11 10:28 p.m.•348 views

CVE-2023-5487

CVE-2023-5487 affects Google Chrome/Chromium’s Fullscreen implementation prior to 118.0.5993.70. An attacker could exploit a crafted Chrome Extension to bypass navigation restrictions by convincing a user to install the malicious extension. Severity is Medium; impact involves bypassing navigation...

6.5CVSS6.5AI score0.00635EPSS

Exploits0References8Affected Software1

UbuntuCve•added 2023/10/11 12:0 a.m.•17 views

CVE-2023-5477

Inappropriate implementation in Installer in Google Chrome prior to 118.0.5993.70 allowed a local attacker to bypass discretionary access control via a crafted command. Chromium security severity: Low...

4.3CVSS5.9AI score0.00515EPSS

Exploits0References1

UbuntuCve•added 2023/10/11 12:0 a.m.•20 views

CVE-2023-5485

Inappropriate implementation in Autofill in Google Chrome prior to 118.0.5993.70 allowed a remote attacker to bypass autofill restrictions via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.9AI score0.00683EPSS

Exploits0References1

UbuntuCve•added 2023/10/11 12:0 a.m.•23 views

CVE-2023-5487

6.5CVSS6.6AI score0.00635EPSS

Exploits0References1

FreeBSD•added 2023/10/10 12:0 a.m.•30 views

chromium -- multiple vulnerabilities

Chrome Releases reports: This update includes 20 security fixes: 1487110 Critical CVE-2023-5218: Use after free in Site Isolation. Reported by @18楼梦想改造家 on 2023-09-27 1062251 Medium CVE-2023-5487: Inappropriate implementation in Fullscreen. Reported by Anonymous on 2020-03-17 1414936 Medium...

8.8CVSS7.9AI score0.0126EPSS

Exploits0References1

Google Chrome Security Advisories•added 2023/10/10 12:0 a.m.•81 views

Stable Channel Update for Desktop

The Stable channel has been updated to 118.0.5993.70 for Mac and Linux and 118.0.5993.70/.71 for Windows, which will roll out over the coming days/weeks. A full list of changes in this build is available in the log. The Extended Stable channel has been updated to 118.0.5993.71 for Windows and...

8.8CVSS7.6AI score0.0126EPSS

Exploits0Affected Software1

OpenVAS•added 2023/10/10 12:0 a.m.•28 views

Mageia: Security Advisory (MGASA-2023-0283)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.9AI score0.99739EPSS

Exploits14References11

OSV•added 2023/09/19 9:25 a.m.•7 views

OPENSUSE-SU-2023:0249-1 Security update for chromium

This update for chromium fixes the following issues: Update to verion 117.0.5938.88 boo1215279: - CVE-2023-4900: Inappropriate implementation in Custom Tabs - CVE-2023-4901: Inappropriate implementation in Prompts - CVE-2023-4902: Inappropriate implementation in Input - CVE-2023-4903: Inappropria...

4.3CVSS4.7AI score0.00717EPSS

Exploits0References12

Microsoft CVE•added 2023/09/15 7:0 a.m.•44 views

Chromium: CVE-2023-4905 Inappropriate implementation in Prompts

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS6AI score0.00681EPSS

Exploits0

Microsoft CVE•added 2023/09/15 7:0 a.m.•32 views

Chromium: CVE-2023-4908 Inappropriate implementation in Picture in Picture

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS6AI score0.00618EPSS

Exploits0

Tenable Nessus•added 2023/09/15 12:0 a.m.•96 views

Microsoft Edge (Chromium) < 117.0.2045.31 Multiple Vulnerabilities

The version of Microsoft Edge installed on the remote Windows host is prior to 117.0.2045.31. It is, therefore, affected by multiple vulnerabilities as referenced in the September 15, 2023 advisory. - Microsoft Edge Chromium-based Elevation of Privilege Vulnerability CVE-2023-36562, CVE-2023-3673...

9.6CVSS6.6AI score0.99739EPSS

Exploits9References29

Tenable Nessus•added 2023/09/13 12:0 a.m.•50 views

FreeBSD : chromium -- multiple vulnerabilities (88754d55-521a-11ee-8290-a8a1599412c6)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 88754d55-521a-11ee-8290-a8a1599412c6 advisory. - Heap buffer overflow in WebP in Google Chrome prior to 116.0.5845.187 allowed a remote...

8.8CVSS8.1AI score0.99739EPSS

Exploits9References13

OSV•added 2023/09/12 9:15 p.m.•20 views

CVE-2023-4907

Inappropriate implementation in Intents in Google Chrome on Android prior to 117.0.5938.62 allowed a remote attacker to obfuscate security UI via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.2AI score

Exploits0References7

NVD•added 2023/09/12 9:15 p.m.•20 views

CVE-2023-4903

Inappropriate implementation in Custom Mobile Tabs in Google Chrome on Android prior to 117.0.5938.62 allowed a remote attacker to spoof security UI via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5AI score0.00663EPSS

Exploits0References7

NVD•added 2023/09/12 9:15 p.m.•18 views

CVE-2023-4900

Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 117.0.5938.62 allowed a remote attacker to obfuscate a permission prompt via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5AI score0.00663EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by