Lucene search
K

2106 matches found

Prion
Prion
added 2021/11/02 11:15 p.m.22 views

Type confusion

Type confusion in WebAssembly in Google Chrome prior to 66.0.3359.139 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

6.8CVSS8.4AI score0.00717EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2021/11/02 11:15 p.m.2 views

UBUNTU-CVE-2018-6122

Type confusion in WebAssembly in Google Chrome prior to 66.0.3359.139 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7AI score0.00717EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2021/11/02 10:35 p.m.37 views

CVE-2018-6122

Removed by vendor...

8.8CVSS9.3AI score0.00717EPSS
Exploits0
Cvelist
Cvelist
added 2021/11/02 10:35 p.m.22 views

CVE-2018-6122

Type confusion in WebAssembly in Google Chrome prior to 66.0.3359.139 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.5AI score0.00717EPSS
Exploits0References1
CVE
CVE
added 2021/11/02 10:35 p.m.80 views

CVE-2018-6122

CVE-2018-6122 : A type confusion vulnerability in the V8 JavaScript engine of Google Chrome (pre-66.0.3359.139) could allow a remote attacker to exploit heap corruption via a crafted HTML page. Affected product: Google Chrome (V8 component). Root cause: type confusion in V8. Impact: remote code e...

8.8CVSS8.4AI score0.00717EPSS
Exploits0References1Affected Software1
The Hacker News
The Hacker News
added 2021/10/29 4:8 a.m.126 views

Google Releases Urgent Chrome Update to Patch 2 Actively Exploited 0-Day Bugs

Google on Thursday rolled out an emergency update for its Chrome web browser, including fixes for two zero-day vulnerabilities that it says are being actively exploited in the wild. Tracked as CVE-2021-38000 and CVE-2021-38003, the weaknesses relate to insufficient validation of untrusted input i...

9.6CVSS1.7AI score0.70435EPSS
Exploits16
Tenable Nessus
Tenable Nessus
added 2021/10/27 12:0 a.m.41 views

NewStart CGSL MAIN 6.02 : firefox Multiple Vulnerabilities (NS-SA-2021-0131)

The remote NewStart CGSL host, running version MAIN 6.02, has firefox packages installed that are affected by multiple vulnerabilities: - Further techniques that built on the slipstream research combined with a malicious webpage could have exposed both an internal network's hosts as well as...

8.8CVSS8.4AI score0.01764EPSS
Exploits1References17
OSV
OSV
added 2021/10/18 6:15 a.m.5 views

AZL-6450 CVE-2021-38297 affecting package golang for versions less than 1.17.8-1

Go before 1.16.9 and 1.17.x before 1.17.2 has a Buffer Overflow via large arguments in a function invocation from a WASM module, when GOARCH=wasm GOOS=js is used...

9.8CVSS7.2AI score0.10299EPSS
Exploits0References1
OSV
OSV
added 2021/10/18 6:15 a.m.0 views

UBUNTU-CVE-2021-38297

Go before 1.16.9 and 1.17.x before 1.17.2 has a Buffer Overflow via large arguments in a function invocation from a WASM module, when GOARCH=wasm GOOS=js is used...

9.8CVSS7.1AI score0.10299EPSS
Exploits0References4
Gitee
Gitee
added 2021/10/16 11:59 p.m.7 views

Exploit for Improper Input Validation in Google Chrome

It is an offensive tool for WebAssembly exploitation. The repository contains PoC exploits for CVE-2020-16040 and CVE-2021-3156. The primary CVE is CVE-2020-16040. The target product/service is WebAssembly, and the vulnerability class/vector is arbitrary code execution RCE via WebAssembly module...

7.8CVSS8.8AI score0.99595EPSS
Exploits92
RedhatCVE
RedhatCVE
added 2021/10/11 2:49 p.m.102 views

CVE-2021-38297

A flaw was found in golang. This vulnerability can only be triggered when invoking functions from vulnerable WASM WebAssembly Modules. Go can be compiled to WASM. If the product or service doesn't use WASM functions, it is not affected, although it uses golang. Mitigation Mitigation for this issu...

9.8CVSS0.5AI score0.10299EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/10/07 12:0 a.m.11 views

Fedora: Security Advisory for rust-wat (FEDORA-2021-1805eacb48)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.3CVSS6.4AI score0.00297EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/10/07 12:0 a.m.12 views

Fedora: Security Advisory for rust-wasmparser (FEDORA-2021-1805eacb48)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.3CVSS6.4AI score0.00297EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/10/07 12:0 a.m.13 views

Fedora: Security Advisory for rust-wasmtime-types (FEDORA-2021-1805eacb48)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.3CVSS6.4AI score0.00297EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/10/07 12:0 a.m.12 views

Fedora: Security Advisory for rust-cranelift-wasm (FEDORA-2021-1805eacb48)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.3CVSS6.4AI score0.00297EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/10/07 12:0 a.m.14 views

Fedora: Security Advisory for rust-wast (FEDORA-2021-1805eacb48)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.3CVSS6.4AI score0.00297EPSS
Exploits0References2
Fedora
Fedora
added 2021/10/04 1:4 a.m.13 views

[SECURITY] Fedora 34 Update: rust-wasmtime-types-0.30.0-2.fc34

WebAssembly type definitions for Cranelift...

6.3CVSS1.5AI score0.00297EPSS
Exploits0
Fedora
Fedora
added 2021/10/04 1:4 a.m.23 views

[SECURITY] Fedora 34 Update: rust-wat-1.0.40-1.fc34

Rust parser for the WebAssembly Text format, WAT...

6.3CVSS2.5AI score0.00297EPSS
Exploits0
Fedora
Fedora
added 2021/10/04 1:4 a.m.18 views

[SECURITY] Fedora 34 Update: rust-wast-38.0.0-2.fc34

Customizable Rust parsers for the WebAssembly Text formats WAT and WAST...

6.3CVSS2.5AI score0.00297EPSS
Exploits0
Fedora
Fedora
added 2021/10/04 1:4 a.m.23 views

[SECURITY] Fedora 34 Update: rust-wasmtime-environ-0.30.0-1.fc34

Standalone environment support for WebAsssembly code in Cranelift...

6.3CVSS1.7AI score0.00297EPSS
Exploits0
Rows per page
Query Builder