Lucene search
+L

237 matches found

ptsecurity
ptsecurity
added 2023/09/27 12:0 a.m.9 views

PT-2023-5638 · Google +3 · Google Chrome +3

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 117.0.5938.132 Description: The issue is related to a use after free vulnerability in the Passwords component of Google Chrome, which can lead to heap corruption. A remote attacker who convinces a user to engag...

10CVSS6.8AI score0.99735EPSS
Exploits131References1113
nvd
nvd
added 2023/08/01 11:15 p.m.27 views

CVE-2023-3729

Use after free in Splitscreen in Google Chrome on ChromeOS prior to 115.0.5790.131 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interactions. Chromium security severity: High...

8.8CVSS9.2AI score0.00339EPSS
Exploits1References2
osv
osv
added 2023/08/01 11:15 p.m.26 views

CVE-2023-3730

Use after free in Tab Groups in Google Chrome prior to 115.0.5790.98 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.2AI score
Exploits0References4
nvd
nvd
added 2023/08/01 11:15 p.m.23 views

CVE-2023-3730

Use after free in Tab Groups in Google Chrome prior to 115.0.5790.98 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS9AI score0.00709EPSS
Exploits1References4
prion
prion
added 2023/08/01 11:15 p.m.25 views

Design/Logic Flaw

Use after free in Tab Groups in Google Chrome prior to 115.0.5790.98 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

6.8CVSS8.8AI score0.00709EPSS
Exploits1References4Affected Software1
cve
cve
added 2023/08/01 10:39 p.m.147 views

CVE-2023-3730

CVE-2023-3730: Use-after-free in Tab Groups of Google Chrome/Chromium prior to 115.0.5790.98. Root cause is a Tab Groups use-after-free in Chrome/Chromium, enabling potential heap corruption when a user interacts with specific UI. Affected products include Google Chrome and Chromium-based browser...

8.8CVSS8.8AI score0.00709EPSS
Exploits1References4Affected Software1
debiancve
debiancve
added 2023/08/01 10:39 p.m.36 views

CVE-2023-3730

Use after free in Tab Groups in Google Chrome prior to 115.0.5790.98 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS9.4AI score0.00709EPSS
Exploits1
cve
cve
added 2023/08/01 10:39 p.m.78 views

CVE-2023-3729

CVE-2023-3729 affects Google Chrome on ChromeOS (Splitscreen) and is caused by a use-after-free that can lead to heap corruption when a user is induced to perform specific UI interactions. The issue is tied to ChromeOS builds prior to version 115.0.5790.131. The vulnerability’s impact is describe...

8.8CVSS9.1AI score0.00339EPSS
Exploits1References2Affected Software1
susecve
susecve
added 2023/07/19 11:23 p.m.3 views

SUSE CVE-2023-3730

Use after free in Tab Groups in Google Chrome prior to 115.0.5790.98 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS9.2AI score0.00709EPSS
Exploits1References4
veracode
veracode
added 2023/03/13 12:13 a.m.23 views

Denial Of Service (DoS)

Google Chrome is vulnerable to Denial Of Service DoS. The vulnerability exists due to the use after free in Aura, which allows an attacker to convince the user to engage in specific UI interactions to potentially exploit heap corruption via specific UI interactions, leading to an application cras...

8.8CVSS8.8AI score0.00599EPSS
Exploits0References5Affected Software1
cnvd
cnvd
added 2023/03/13 12:0 a.m.24 views

Google Chrome DevTools Component Type Mixing Vulnerability

Google Chrome is a web browser from Google, Inc. A type-mangling vulnerability exists in versions prior to Google Chrome 111.0.5563.64, which stems from a type-mangling issue in the DevTools component. A remote attacker could exploit this vulnerability to cause heap corruption via crafted UI...

6.3CVSS4.5AI score0.0042EPSS
Exploits0References1
veracode
veracode
added 2023/03/12 10:24 p.m.26 views

Denial Of Service (DoS)

Google Chrome is vulnerable to Denial Of Service DoS. The vulnerability exists due to the use after free in the Overview Mode, which allows an attacker to convince an user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page, leading to an applicati...

8.8CVSS8.7AI score0.00604EPSS
Exploits0References5Affected Software1
veracode
veracode
added 2023/03/12 8:36 p.m.19 views

Denial Of Service (DoS)

Google Chrome is vulnerable to Denial Of Service DoS. The vulnerability exists due to the type confusion in DevTools, which allows an attacker to convince user to engage in specific UI interactions to potentially exploit heap corruption via UI interactions, leading to an application crash...

8.8CVSS7.1AI score0.00694EPSS
Exploits0References4Affected Software1
veracode
veracode
added 2023/03/12 11:59 a.m.25 views

Denial Of Service (DoS)

Google Chrome is vulnerable to Denial Of Service DoS. The vulnerability exists due to the integer overflow in Window Manager, which allows an attacker to convince a user to engage in specific UI interactions to perform an out-of-bounds memory write via crafted UI interaction, leading to an...

8.8CVSS8.4AI score0.00541EPSS
Exploits1References3Affected Software1
veracode
veracode
added 2023/03/12 11:58 a.m.31 views

Denial Of Service (DoS)

Google Chrome is vulnerable to Denial Of Service DoS. The vulnerability exists due to the use after free in the Exosphere, which allows an attacker to engage the user in specific UI interactions to potentially exploit heap corruption via crafted UI interactions, leading to an application crash...

8.8CVSS8.8AI score0.00395EPSS
Exploits1References3Affected Software1
nessus
nessus
added 2023/03/03 12:0 a.m.50 views

openSUSE 15 Security Update : opera (openSUSE-SU-2023:0063-1)

The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2023:0063-1 advisory. - Type confusion in V8 in Google Chrome prior to 110.0.5481.77 allowed a remote attacker to potentially exploit heap corruption via a crafted HTM...

8.8CVSS8AI score0.00883EPSS
Exploits0References21
nvd
nvd
added 2023/02/22 8:15 p.m.16 views

CVE-2023-0932

Use after free in WebRTC in Google Chrome on Windows prior to 110.0.5481.177 allowed a remote attacker who convinced the user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS9.1AI score0.00579EPSS
Exploits0References3
osv
osv
added 2023/02/22 8:15 p.m.21 views

CVE-2023-0932

Use after free in WebRTC in Google Chrome on Windows prior to 110.0.5481.177 allowed a remote attacker who convinced the user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.3AI score
Exploits0References3
ubuntucve
ubuntucve
added 2023/02/22 8:15 p.m.28 views

CVE-2023-0932

Use after free in WebRTC in Google Chrome on Windows prior to 110.0.5481.177 allowed a remote attacker who convinced the user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.2AI score0.00579EPSS
Exploits0References3
cve
cve
added 2023/02/22 7:54 p.m.143 views

CVE-2023-0932

CVE-2023-0932: Use-after-free in WebRTC for Google Chrome on Windows prior to 110.0.5481.177. Root cause is heap corruption via crafted HTML page, with high impact (C/H/I/A). Affected product is Chrome/Chromium WebRTC component; remediation is to upgrade to Chrome 110.0.5481.177 or newer (or corr...

8.8CVSS8.9AI score0.00579EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder