Lucene search
K

2108 matches found

OSV
OSV
added 2018/08/28 8:29 p.m.4 views

CVE-2017-15429

Inappropriate implementation in V8 WebAssembly JS bindings in Google Chrome prior to 63.0.3239.108 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page...

6.1CVSS7.4AI score0.01142EPSS
Exploits0References6
CVE
CVE
added 2018/08/28 8:0 p.m.121 views

CVE-2017-15429

The CVE-2017-15429 entry concerns Google Chrome prior to 63.0.3239.108, where an insecure implementation in V8 WebAssembly JS bindings could allow a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. Affected component is the V8 bindings used by Chrome’s WebAssemb...

6.1CVSS6.2AI score0.01142EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2018/08/28 7:29 p.m.2 views

CVE-2017-15413

Type confusion in WebAssembly in V8 in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.3AI score0.01661EPSS
Exploits0References5
NVD
NVD
added 2018/08/28 7:29 p.m.12 views

CVE-2017-15413

Type confusion in WebAssembly in V8 in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS8.6AI score0.01661EPSS
Exploits0References5
Prion
Prion
added 2018/08/28 7:29 p.m.15 views

Type confusion

Type confusion in WebAssembly in V8 in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

6.8CVSS8.4AI score0.01661EPSS
Exploits0References5Affected Software5
UbuntuCve
UbuntuCve
added 2018/08/28 7:29 p.m.26 views

CVE-2017-15413

Type confusion in WebAssembly in V8 in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.3AI score0.01661EPSS
Exploits0References1
OSV
OSV
added 2018/08/28 7:29 p.m.3 views

UBUNTU-CVE-2017-15413

Type confusion in WebAssembly in V8 in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.3AI score0.01661EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/08/28 7:0 p.m.21 views

CVE-2017-15413

Type confusion in WebAssembly in V8 in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.5AI score0.01661EPSS
Exploits0References5
CVE
CVE
added 2018/08/28 7:0 p.m.100 views

CVE-2017-15413

CVE-2017-15413 corresponds to a type confusion in WebAssembly within Google Chrome’s V8 engine. The vulnerability affects Chrome before version 63.0.3239.84 and is described as enabling a remote attacker to potentially trigger heap corruption via a crafted HTML page. The root cause is a type conf...

8.8CVSS8.4AI score0.01661EPSS
Exploits0References5Affected Software3
Debian CVE
Debian CVE
added 2018/08/28 7:0 p.m.23 views

CVE-2017-15413

Removed by vendor...

8.8CVSS9.3AI score0.01661EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/08/23 12:0 a.m.13 views

Google Chrome < 61.0.3163.79 Multiple Vulnerabilities

Binary data 700345.pasl...

8.8CVSS7.3AI score0.01263EPSS
Exploits0References2
Kitploit
Kitploit
added 2018/08/22 12:49 p.m.30 views

Vim.Wasm - Vim Editor Ported To WebAssembly

This project is an experimental fork of Vim editor by @rhysd to compile it into WebAssembly using emscripten and binaryen. Try it with your browser NOTICES Please access from a desktop browser Chrome/Firefox/Safari/Edge. Safari seems the best on macOS. Please avoid slow networks. Your browser wil...

7.3AI score
Exploits0References6
GoogleProjectZero
GoogleProjectZero
added 2018/08/16 12:0 a.m.38 views

The Problems and Promise of WebAssembly

Posted by Natalie Silvanovich, Project Zero WebAssembly is a format that allows code written in assembly-like instructions to be run from JavaScript. It has recently been implemented in all four major browsers. We reviewed each browser’s WebAssembly implementation and found three vulnerabilities...

8.8CVSS8.9AI score0.20024EPSS
Exploits10
FireEye
FireEye
added 2018/08/15 11:30 a.m.502 views

Announcing the Fifth Annual Flare-On Challenge

The FireEye Labs Advanced Reverse Engineering FLARE team’s annual reverse engineering challenge will start at 8:00 p.m. ET on Aug. 24, 2018. This is a CTF-style challenge for all active and aspiring reverse engineers, malware analysts, and security professionals. So dust off your disassembler, pu...

0.1AI score
Exploits0
OPENSUSE Linux
OPENSUSE Linux
added 2018/08/10 3:8 a.m.63 views

Security update for webkit2gtk3 (moderate)

This update for webkit2gtk3 to version 2.20.3 fixes the following issues: These security issues were fixed: - CVE-2018-4190: An unspecified issue allowed remote attackers to obtain sensitive credential information that is transmitted during a CSS mask-image fetch bsc1097693. - CVE-2018-4199: An...

6.8CVSS6.6AI score0.69016EPSS
Exploits28References2
Check Point Advisories
Check Point Advisories
added 2018/08/09 12:0 a.m.1 views

Apple WebKit WebAssembly Parsing Type Confusion

A vulnerability exists in Apple WebKit. Successful exploitation of this vulnerability could allow a remote attacker to damage users system. This leads to a number of possible overflows and type confusion bugs...

5.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/07/26 12:0 a.m.45 views

openSUSE Security Update : Chromium (openSUSE-2018-759)

This update for Chromium to version 67.0.3396.99 fixes multiple issues. Security issues fixed bsc1095163 : - CVE-2018-6123: Use after free in Blink - CVE-2018-6124: Type confusion in Blink - CVE-2018-6125: Overly permissive policy in WebUSB - CVE-2018-6126: Heap buffer overflow in Skia -...

9.6CVSS8AI score0.07666EPSS
Exploits3References32
OPENSUSE Linux
OPENSUSE Linux
added 2018/07/25 3:9 p.m.98 views

Security update for Chromium (important)

This update for Chromium to version 67.0.3396.99 fixes multiple issues. Security issues fixed bsc1095163: - CVE-2018-6123: Use after free in Blink - CVE-2018-6124: Type confusion in Blink - CVE-2018-6125: Overly permissive policy in WebUSB - CVE-2018-6126: Heap buffer overflow in Skia -...

1.2AI score0.07666EPSS
Exploits3References6
BDU FSTEC
BDU FSTEC
added 2018/07/12 12:0 a.m.6 views

The vulnerability of the WebAssembly component in Mozilla Firefox’s browser allows a hacker to trigger a service failure.

The vulnerability of the WebAssembly component in Mozilla Firefox arises due to an overflow in memory buffers. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

7.5CVSS7.8AI score0.20024EPSS
Exploits0References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2018/07/12 12:0 a.m.6 views

The vulnerability of the WebAssembly component in Mozilla Firefox’s browser allows a hacker to trigger a service failure.

The vulnerability of the WebAssembly component in Mozilla Firefox’s browser is related to an error during the call of “shrinkElements” during subsequent memory garbage collection. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

7.5CVSS7.8AI score0.15444EPSS
Exploits0References9Affected Software3
Rows per page
Query Builder