Astra Linux - уязвимость в chromium

Inappropriate implementation in navigations in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to bypass content security policy through a crafted HTML page. Chromium security severity: Low...

CVE-2025-58272

CVE-2025-58272 affects Web Caster V130 firmware versions 1.08 and earlier. The issue is a CSRF (CWE-352) that can cause a logged-in user, who visits a malicious page, to have product settings unintentionally changed. Documentation from multiple sources confirms the affected product and impact. Th...

CVE-2025-58272

Cross-site request forgery vulnerability exists in Web Caster V130 versions 1.08 and earlier. If a logged-in user views a malicious page created by an attacker, the settings of the product may be unintentionally changed...

PT-2025-35676

Name of the Vulnerable Software and Affected Versions: Web Caster V130 versions 1.08 and earlier Description: A cross-site request forgery issue exists that allows an attacker to potentially modify product settings if a logged-in user views a malicious page. Recommendations: Update Web Caster V13...

Mozilla Firefox Security Update (MFSA2024-39) - Mac OS X

Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...

SUSE CVE-2024-10230

Type Confusion in V8 in Google Chrome prior to 130.0.6723.69 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

Google Chrome < 130.0.6723.70 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 130.0.6723.70. It is, therefore, affected by multiple vulnerabilities as referenced in the 202410stable-channel-update-for-desktop22 advisory. - Inappropriate implementation in Extensions. CVE-2024-10229 - Type Confusio...

SUSE CVE-2024-9955

Use after free in WebAuthentication in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

SUSE CVE-2024-9958

Inappropriate implementation in PictureInPicture in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

DEBIAN-CVE-2024-9964

Inappropriate implementation in Payments in Google Chrome prior to 130.0.6723.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted Chrome Extension. Chromium security severity: Low...

DEBIAN-CVE-2024-9960

Use after free in Dawn in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

Google Chrome 安全漏洞

Google Chrome is a web browser from Google, an American company. A security vulnerability exists in Google Chrome prior to version 130.0.6723.58, which stems from an improper implementation of PictureInPicture, and can be exploited by remote attackers to perform UI spoofing via a crafted HTML pag...

Google Chrome 安全漏洞

Google Chrome is a web browser from Google, an American company. A security vulnerability exists in Google Chrome prior to version 130.0.6723.58, which stems from the presence of post-release reuse, and can be exploited by a remote attacker to convince a user to perform a specific UI gesture,...

UBUNTU-CVE-2024-9402

Memory safety bugs present in Firefox 130, Firefox ESR 128.2, and Thunderbird 128.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox 131, Firefox ESR...

mozilla: Memory safety bugs fixed in Firefox 130, Firefox ESR 128.2, and Thunderbird 128.2

The Mozilla Foundation's Security Advisory: Memory safety bugs are present in Firefox 129, Firefox ESR 128.1, and Thunderbird 128.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort, some of these could have been exploited to run arbitrary code...

mozilla: Memory safety bugs fixed in Firefox 130, Firefox ESR 128.2, and Thunderbird 128.2

The Mozilla Foundation's Security Advisory: Memory safety bugs are present in Firefox 129, Firefox ESR 128.1, and Thunderbird 128.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort, some of these could have been exploited to run arbitrary code...

CVE-2024-8389

Memory safety bugs present in Firefox 129. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox 130...

PT-2024-5899 · Mozilla +4 · Firefox +4

Name of the Vulnerable Software and Affected Versions: Firefox versions prior to 130 Description: The issue is related to memory safety bugs present in Firefox, which showed evidence of memory corruption. It is presumed that with enough effort, these bugs could be exploited to run arbitrary code,...

PT-2024-6992 · Google +1 · Google Chrome +1

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 130.0.6723.58 Description: The issue is related to a use-after-free vulnerability in the user interface of Google Chrome on iOS. This vulnerability can be exploited by a remote attacker who convinces a user to...

Code injection

SAP Marketing Servlet, version-130,140,150, allows an authenticated attacker to invoke certain functions that are restricted. Limited knowledge of payload is required for an attacker to exploit the vulnerability and perform tasks related to contact and interaction data which impacts Confidentiali...