237 matches found
PT-2023-5638 · Google +3 · Google Chrome +3
Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 117.0.5938.132 Description: The issue is related to a use after free vulnerability in the Passwords component of Google Chrome, which can lead to heap corruption. A remote attacker who convinces a user to engag...
CVE-2023-3729
Use after free in Splitscreen in Google Chrome on ChromeOS prior to 115.0.5790.131 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interactions. Chromium security severity: High...
CVE-2023-3730
Use after free in Tab Groups in Google Chrome prior to 115.0.5790.98 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
CVE-2023-3730
Use after free in Tab Groups in Google Chrome prior to 115.0.5790.98 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
Design/Logic Flaw
Use after free in Tab Groups in Google Chrome prior to 115.0.5790.98 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
CVE-2023-3730
CVE-2023-3730: Use-after-free in Tab Groups of Google Chrome/Chromium prior to 115.0.5790.98. Root cause is a Tab Groups use-after-free in Chrome/Chromium, enabling potential heap corruption when a user interacts with specific UI. Affected products include Google Chrome and Chromium-based browser...
CVE-2023-3730
Use after free in Tab Groups in Google Chrome prior to 115.0.5790.98 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
CVE-2023-3729
CVE-2023-3729 affects Google Chrome on ChromeOS (Splitscreen) and is caused by a use-after-free that can lead to heap corruption when a user is induced to perform specific UI interactions. The issue is tied to ChromeOS builds prior to version 115.0.5790.131. The vulnerability’s impact is describe...
SUSE CVE-2023-3730
Use after free in Tab Groups in Google Chrome prior to 115.0.5790.98 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
Denial Of Service (DoS)
Google Chrome is vulnerable to Denial Of Service DoS. The vulnerability exists due to the use after free in Aura, which allows an attacker to convince the user to engage in specific UI interactions to potentially exploit heap corruption via specific UI interactions, leading to an application cras...
Google Chrome DevTools Component Type Mixing Vulnerability
Google Chrome is a web browser from Google, Inc. A type-mangling vulnerability exists in versions prior to Google Chrome 111.0.5563.64, which stems from a type-mangling issue in the DevTools component. A remote attacker could exploit this vulnerability to cause heap corruption via crafted UI...
Denial Of Service (DoS)
Google Chrome is vulnerable to Denial Of Service DoS. The vulnerability exists due to the use after free in the Overview Mode, which allows an attacker to convince an user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page, leading to an applicati...
Denial Of Service (DoS)
Google Chrome is vulnerable to Denial Of Service DoS. The vulnerability exists due to the type confusion in DevTools, which allows an attacker to convince user to engage in specific UI interactions to potentially exploit heap corruption via UI interactions, leading to an application crash...
Denial Of Service (DoS)
Google Chrome is vulnerable to Denial Of Service DoS. The vulnerability exists due to the integer overflow in Window Manager, which allows an attacker to convince a user to engage in specific UI interactions to perform an out-of-bounds memory write via crafted UI interaction, leading to an...
Denial Of Service (DoS)
Google Chrome is vulnerable to Denial Of Service DoS. The vulnerability exists due to the use after free in the Exosphere, which allows an attacker to engage the user in specific UI interactions to potentially exploit heap corruption via crafted UI interactions, leading to an application crash...
openSUSE 15 Security Update : opera (openSUSE-SU-2023:0063-1)
The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2023:0063-1 advisory. - Type confusion in V8 in Google Chrome prior to 110.0.5481.77 allowed a remote attacker to potentially exploit heap corruption via a crafted HTM...
CVE-2023-0932
Use after free in WebRTC in Google Chrome on Windows prior to 110.0.5481.177 allowed a remote attacker who convinced the user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
CVE-2023-0932
Use after free in WebRTC in Google Chrome on Windows prior to 110.0.5481.177 allowed a remote attacker who convinced the user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
CVE-2023-0932
Use after free in WebRTC in Google Chrome on Windows prior to 110.0.5481.177 allowed a remote attacker who convinced the user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
CVE-2023-0932
CVE-2023-0932: Use-after-free in WebRTC for Google Chrome on Windows prior to 110.0.5481.177. Root cause is heap corruption via crafted HTML page, with high impact (C/H/I/A). Affected product is Chrome/Chromium WebRTC component; remediation is to upgrade to Chrome 110.0.5481.177 or newer (or corr...