1225 matches found
Debian DSA-5456-1 : chromium - security update
The remote Debian 11 / 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5456 advisory. - Use after free in WebRTC. CVE-2023-3727, CVE-2023-3728 - Use after free in Tab Groups. CVE-2023-3730 - Out of bounds memory access in Mojo. CVE-2023-3732 -...
SUSE CVE-2023-3733
Inappropriate implementation in WebApp Installs in Google Chrome prior to 115.0.5790.98 allowed a remote attacker to potentially spoof the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: Medium...
Google Chrome Security Update (stable-channel-update-for-desktop-2023-07) - Windows
Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...
Google Chrome Security Update (stable-channel-update-for-desktop-2023-07) - Linux
Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...
Google Chrome 安全漏洞
Google Chrome is a web browser from Google, Inc. in the United States. A security vulnerability exists in Google Chrome WebApp Installs that stems from improper execution...
PT-2023-3718 · Google +2 · Google Chrome +2
Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 115.0.5790.98 Description: The issue is related to an inappropriate implementation in WebApp Installs, allowing a remote attacker to potentially spoof the contents of the Omnibox URL bar via a crafted HTML page...
Stable Channel Update for Desktop
The Chrome team is delighted to announce the promotion of Chrome 115 to the stable channel for Windows, Mac and Linux. This will roll out over the coming days/weeks. Chrome 115.0.5790.98 Linux and Mac, 115.0.5790.98/99 Windows contains a number of fixes and improvements -- a list of changes is...
Google Chrome < 115.0.5790.98 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 115.0.5790.98. It is, therefore, affected by multiple vulnerabilities as referenced in the 202307stable-channel-update-for-desktop advisory. - Out of bounds memory access in Mojo in Google Chrome prior to 115.0.5790.98...
Google Chrome < 115.0.5790.98 Multiple Vulnerabilities
The version of Google Chrome installed on the remote macOS host is prior to 115.0.5790.98. It is, therefore, affected by multiple vulnerabilities as referenced in the 202307stable-channel-update-for-desktop advisory. - Out of bounds memory access in Mojo in Google Chrome prior to 115.0.5790.98...
The vulnerability of the WebApp Installs component of Google Chrome allows attackers to circumvent security restrictions.
The vulnerability of the WebApp Installs component of Google Chrome is related to insufficient verification of data authenticity. Exploiting this vulnerability allows a malicious actor to bypass security restrictions through a specially created HTML page...
Microsoft Edge (Chromium-Based) Multiple Vulnerabilities-02 (Jun 2023)
This host is missing an important security update according to Microsoft Edge Chromium-Based updates. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
org.jasig.cas:cas-management-webapp (>=4.0.0 <=4.0.7), org.jasig.cas:cas-server-webapp (>=3.5.1 <=3.6.0) potentially affected by CVE-2023-34613 via net.sf.sojo:sojo (=1.0.5)
net.sf.sojo:sojo MAVEN version =1.0.5 is affected by a known vulnerability. The following packages have a transitive dependency on net.sf.sojo:sojo and may be impacted: - org.jasig.cas:cas-management-webapp =4.0.0, =3.5.1, =3.6.0 Source cves: CVE-2023-34613 Source advisory: OSV:GHSA-75R3-38RH-PMX...
Microsoft Edge (Chromium) < 113.0.1774.50 / 112.0.1722.84 Multiple Vulnerabilities
The version of Microsoft Edge installed on the remote Windows host is prior to 113.0.1774.50 / 112.0.1722.84. It is, therefore, affected by multiple vulnerabilities as referenced in the May 18, 2023 advisory. - Use after free in Navigation in Google Chrome prior to 113.0.5672.126 allowed a remote...
Fedora 38 : chromium (2023-5c477a04ca)
The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-5c477a04ca advisory. update to 113.0.5672.126. Fixes the many security issues Tenable has extracted the preceding description block directly from the Fedora security...
Chromium: CVE-2023-2726 Inappropriate implementation in WebApp Installs
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Debian DSA-5404-1 : chromium - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5404 advisory. Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure. For the...
CVE-2023-2726
Inappropriate implementation in WebApp Installs in Google Chrome prior to 113.0.5672.126 allowed an attacker who convinced a user to install a malicious web app to bypass install dialog via a crafted HTML page. Chromium security severity: Medium...
CVE-2023-2726
Inappropriate implementation in WebApp Installs in Google Chrome prior to 113.0.5672.126 allowed an attacker who convinced a user to install a malicious web app to bypass install dialog via a crafted HTML page. Chromium security severity: Medium...
DEBIAN-CVE-2023-2726
Inappropriate implementation in WebApp Installs in Google Chrome prior to 113.0.5672.126 allowed an attacker who convinced a user to install a malicious web app to bypass install dialog via a crafted HTML page. Chromium security severity: Medium...
Design/Logic Flaw
Inappropriate implementation in WebApp Installs in Google Chrome prior to 113.0.5672.126 allowed an attacker who convinced a user to install a malicious web app to bypass install dialog via a crafted HTML page. Chromium security severity: Medium...