Lucene search
K

2289 matches found

Tenable Nessus
Tenable Nessus
added 2022/05/31 12:0 a.m.46 views

Mozilla Thunderbird < 91.10

The version of Thunderbird installed on the remote Windows host is prior to 91.10. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2022-22 advisory. - Mozilla developers Andrew McCreight, Nicolas B. Pierron, and the Mozilla Fuzzing Team reported memory safety bugs...

9.8CVSS8.2AI score0.01055EPSS
Exploits0References10
CNNVD
CNNVD
added 2022/05/31 12:0 a.m.4 views

Mozilla Thunderbird 缓冲区错误漏洞

Mozilla Thunderbird is the United States Mozilla Foundation's set of independent from the Mozilla Application Suite e-mail client software. The program supports IMAP and POP mail protocols as well as the HTML mail format. A buffer error vulnerability exists in Mozilla Thunderbird versions 91.0...

9.8CVSS8.6AI score0.00814EPSS
Exploits0References21
Tenable Nessus
Tenable Nessus
added 2022/05/31 12:0 a.m.47 views

Mozilla Firefox < 101.0

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 101.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2022-20 advisory. - Mozilla developers Gabriele Svelto, Timothy Nikkel, Randell Jesup, Jon Coppeard, and the Mozilla Fuzzing Tea...

9.8CVSS7.5AI score0.01107EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2022/05/31 12:0 a.m.36 views

Mozilla Thunderbird < 91.10

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 91.10. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2022-22 advisory. - Mozilla developers Andrew McCreight, Nicolas B. Pierron, and the Mozilla Fuzzing Team reported memory...

9.8CVSS8.2AI score0.01055EPSS
Exploits0References10
Zero Day Initiative
Zero Day Initiative
added 2022/05/26 12:0 a.m.30 views

Apple Safari WebGL generateMipmap Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple Safari. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the WebGL library. Th...

8.8CVSS2AI score0.01371EPSS
Exploits0References1
Talos
Talos
added 2022/05/17 12:0 a.m.32 views

NVIDIA nvwgf2umx_cfg.dll shader DCL_UNORDERED_ACCESS_VIEW_STRUCTURED memory corruption vulnerability

Summary A memory corruption vulnerability exists in the shader DCLUNORDEREDACCESSVIEWSTRUCTURED functionality of NVIDIA D3D10 Driver version 496.76, 30.0.14.9676. A specially-crafted executable / shader file can lead to memory corruption. This vulnerability potentially could be triggered from gue...

8.5CVSS8.6AI score0.01492EPSS
Exploits0
Talos
Talos
added 2022/05/17 12:0 a.m.34 views

NVIDIA nvwgf2umx_cfg.dll shader DCL_RESOURCE_STRUCTURED memory corruption vulnerability

Summary A memory corruption vulnerability exists in the shader DCLRESOURCESTRUCTURED functionality of NVIDIA D3D10 Driver, version 496.76, 30.0.14.9676. A specially-crafted executable/shader file can lead to an out-of-bounds write. This vulnerability potentially could be triggered from guest...

8.5CVSS8.4AI score0.01492EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2022/05/13 12:0 a.m.6 views

The vulnerability in the API for 3D graphics in WebGL browsers like Google Chrome and Microsoft Edge allows a hacker to execute arbitrary code.

The vulnerability of the API for 3D graphics in WebGL browsers like Google Chrome and Microsoft Edge is related to improperly implemented security checks for standard elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

7.6CVSS7.2AI score0.00749EPSS
Exploits1References6Affected Software5
Tenable Nessus
Tenable Nessus
added 2022/05/10 12:0 a.m.41 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : firefox Multiple Vulnerabilities (NS-SA-2022-0029)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has firefox packages installed that are affected by multiple vulnerabilities: - Further techniques that built on the slipstream research combined with a malicious webpage could have exposed both an internal network's hosts as...

8.8CVSS8.6AI score0.01764EPSS
Exploits1References27
Microsoft CVE
Microsoft CVE
added 2022/04/28 3:54 p.m.47 views

Chromium: CVE-2022-1482 Inappropriate implementation in WebGL

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS7.2AI score0.00749EPSS
Exploits1
Veracode
Veracode
added 2022/04/28 2:0 p.m.21 views

Denial Of Service (DoS)

chrome is vulnerable to denial of service. The vulnerability exists due to an Inappropriate implementation in WebGL which allows an attacker to cause an application crash...

6.5CVSS3.5AI score0.00749EPSS
Exploits1References4Affected Software2
Kaspersky
Kaspersky
added 2022/04/28 12:0 a.m.41 views

KLA12519 Multiple vulnerabilities in Microsoft Browser

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, gain privileges, spoof user interface. Below is a complete list of vulnerabilities: 1. Use after free...

8.8CVSS9.4AI score0.01029EPSS
Exploits21References27
Kaspersky
Kaspersky
added 2022/04/26 12:0 a.m.475 views

KLA12517 Multiple vulnerabilities in Google Chrome

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions, spoof user interface. Below is a complete list of vulnerabilities: 1. Implementation vulnerability in Input can...

9.6CVSS9.5AI score0.01107EPSS
Exploits25References3
Positive Technologies
Positive Technologies
added 2022/04/14 12:0 a.m.6 views

PT-2022-3955 · Google +2 · Google Chrome +2

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 103.0.5060.53 Description: The issue is related to a heap buffer overflow in the WebGL component of Google Chrome, which could be exploited by a remote attacker via a crafted HTML page, potentially leading to...

10CVSS8.4AI score0.70461EPSS
Exploits22References451
Check Point Advisories
Check Point Advisories
added 2022/02/16 12:0 a.m.3 views

Google Chrome WebGL Use After Free (CVE-2020-6492)

A use-after-free vulnerability exists in Google Chrome WebGL. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.8CVSS5AI score0.00699EPSS
Exploits1
The Hacker News
The Hacker News
added 2022/01/31 3:38 p.m.23 views

Your Graphics Card Fingerprint Can Be Used to Track Your Activities Across the Web

Researchers have demonstrated a new type of fingerprinting technique that exploits a machine's graphics processing unit GPU as a means to persistently track users across the web. Dubbed DrawnApart, the method "identifies a device from the unique properties of its GPU stack," researchers from...

6.8AI score
Exploits0
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.22 views

Mageia: Security Advisory (MGASA-2020-0170)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.1AI score0.06305EPSS
Exploits1References8
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.23 views

Mageia: Security Advisory (MGASA-2018-0483)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.6AI score0.09646EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/01/01 12:0 a.m.6 views

PT-2025-7997

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.15.30 Description A general protection fault was observed in the Linux kernel when running WebGL Aquarium for an extended duration. The issue is related to the drm/amd/display component and the dcn30 internal...

5.5CVSS5.9AI score0.00239EPSS
Exploits0References21
OpenVAS
OpenVAS
added 2021/11/11 12:0 a.m.22 views

Mozilla Firefox Security Advisory (MFSA2011-25) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

4.3CVSS6.6AI score0.01423EPSS
Exploits2References3
Rows per page
Query Builder