18 matches found
Astra Linux - уязвимость в firefox
When selecting a site-isolated process for a document loaded from a data: A URL that was the result of a redirect would be loaded by Firefox in the same process as the site that issued the redirect. This bypassed the site-isolation protections against Spectre-like attacks on sites that hosted an...
Astra Linux - уязвимость в chromium
Before version 114.0.5735.133, using Autofill for payment processing in Google Chrome allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: Critical...
Astra Linux - уязвимость в chromium
The use of after-free in WebRTC in Google Chrome before version 114.0.5735.133 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: High...
Astra Linux - уязвимость в chromium
Inappropriate implementation in Downloads in Google Chrome prior to 114.0.5735.90 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted HTML page. Chromium security severity: Medium...
CVE-2024-34146
Jenkins Git server Plugin 114.v068ac7cc2574 and earlier does not perform a permission check for read access to a Git repository over SSH, allowing attackers with a previously configured SSH public key but lacking Overall/Read permission to access these repositories...
Jenkins Plugin Git server 安全漏洞
Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...
DEBIAN-CVE-2023-3421
Use after free in Media in Google Chrome prior to 114.0.5735.198 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
Google Chrome 资源管理错误漏洞
Google Chrome is a web browser from Google, Inc. in the United States. A security vulnerability exists in Google Chrome prior to version 114.0.5735.198, which stems from a memory reuse after release issue in Media. A remote attacker could exploit this vulnerability to cause heap corruption via...
Mozilla: Memory safety bugs fixed in Firefox 114 and Firefox ESR 102.12
The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developers and community members Gabriele Svelto, Andrew McCreight, the Mozilla Fuzzing Team, Sean Feng, and Sebastian Hengst reported memory safety bugs present in Firefox 113 and Firefox ESR 102.11. Some of these bugs show...
Mozilla: Memory safety bugs fixed in Firefox 114 and Firefox ESR 102.12
The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developers and community members Gabriele Svelto, Andrew McCreight, the Mozilla Fuzzing Team, Sean Feng, and Sebastian Hengst reported memory safety bugs present in Firefox 113 and Firefox ESR 102.11. Some of these bugs show...
Mozilla: Memory safety bugs fixed in Firefox 114 and Firefox ESR 102.12
The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developers and community members Gabriele Svelto, Andrew McCreight, the Mozilla Fuzzing Team, Sean Feng, and Sebastian Hengst reported memory safety bugs present in Firefox 113 and Firefox ESR 102.11. Some of these bugs show...
Mozilla: Memory safety bugs fixed in Firefox 114 and Firefox ESR 102.12
The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developers and community members Gabriele Svelto, Andrew McCreight, the Mozilla Fuzzing Team, Sean Feng, and Sebastian Hengst reported memory safety bugs present in Firefox 113 and Firefox ESR 102.11. Some of these bugs show...
Vulnerabilities fixed in Mozilla Firefox
Mozilla has fixed vulnerabilities in Firefox and Firefox ESR. A malicious party could exploit the vulnerabilities to circumvent a security measure, cause a denial-of-service cause, or potentially execute arbitrary code in the scope of the browser. Mozilla has released updates to fix the...
Mozilla Firefox 输入验证错误漏洞
Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla Firefox prior to version 114, which stems from a site isolation bypass that allows open redirects to data on the site...
SUSE CVE-2023-2941
Inappropriate implementation in Extensions API in Google Chrome prior to 114.0.5735.90 allowed an attacker who convinced a user to install a malicious extension to spoof the contents of the UI via a crafted Chrome Extension. Chromium security severity: Low...
Brave Android 1.52.117 Security Fixes
Fixed URLs automatically being resolved when scanned from QR code as reported on HackerOne by rolandhack. Upgraded Chromium to 114.0.5735.90 — refer to Google Chrome advisories for inherited CVEs...
Google Chrome 安全漏洞
Google Chrome is a web browser from Google, an American company. A security bypass vulnerability exists in Google Chrome prior to version 114.0.5735.90, which stems from a mal-implementation issue in the Extensions API module. An attacker could exploit this vulnerability to bypass security...
PT-2023-4349 · Google +2 · Angle Library +3
Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 114.0.5735.90 Description: The issue is related to an out of bounds read and write in the ANGLE library of Google Chrome, which could allow a remote attacker to potentially exploit heap corruption via a crafted...