2283 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-6038
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap buffer overflow in WebGL in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...
Linux Distros Unpatched Vulnerability : CVE-2018-6079
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate sharing of TEXTURE2DARRAY/TEXTURE3D data between tabs in WebGL in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to leak...
Linux Distros Unpatched Vulnerability : CVE-2021-23981
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A texture upload of a Pixel Buffer Object could have confused the WebGL code to skip binding the buffer used to unpack it, resulting in memory corruption and a...
Linux Distros Unpatched Vulnerability : CVE-2020-6821
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When reading from areas partially or fully outside the source resource with WebGL's copyTexSubImage method, the specification requires the returned values be...
Linux Distros Unpatched Vulnerability : CVE-2022-31737
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A malicious webpage could have caused an out-of-bounds write in WebGL, leading to memory corruption and a potentially exploitable crash. This vulnerability...
Linux Distros Unpatched Vulnerability : CVE-2019-11693
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The bufferdata function in WebGL is vulnerable to a buffer overflow with specific graphics drivers on Linux. This could result in malicious content freezing a t...
The vulnerability of the sub_41F0FC function in the /H5/webgl.data file of the D-Link DI-7003GV2 router’s microprogramming software, which allows a hacker to disclose confidential information
The vulnerability of the sub41F0FC function in the /H5/webgl.data file of the D-Link DI-7003GV2 router’s microprogramming system is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to disclose confidential information remotely...
Malicious code in webgl-fingerprinting (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 016147915e679ae2b97b3c040f72eb1171882e3785e1ae3aea0765497138c268 Any computer that has this package installed or running should be considered...
MAL-2025-5480 Malicious code in webgl-fingerprinting (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 016147915e679ae2b97b3c040f72eb1171882e3785e1ae3aea0765497138c268 Any computer that has this package installed or running should be considered...
CVE-2025-1246
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Arm Ltd Bifrost GPU Userspace Driver, Arm Ltd Valhall GPU Userspace Driver, Arm Ltd Arm 5th Gen GPU Architecture Userspace Driver allows a non-privileged user process to perform valid GPU processing operation...
CVE-2022-2415
Heap buffer overflow in WebGL in Google Chrome prior to 103.0.5060.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
CVE-2020-6103
An exploitable code execution vulnerability exists in the Shader functionality of AMD Radeon DirectX 11 Driver atidxx64.dll 26.20.15019.19000. An attacker can provide a a specially crafted shader file to trigger this vulnerability, resulting in code execution. This vulnerability can be triggered...
CVE-2020-26972
The lifecycle of IPC Actors allows managed actors to outlive their manager actors; and the former must ensure that they are not attempting to use a dead actor they have a reference to. Such a check was omitted in WebGL, resulting in a use-after-free and a potentially exploitable crash. This...
CVE-2011-2602
The NVIDIA Geforce 310 driver 6.14.12.7061 on Windows XP SP3 allows remote attackers to cause a denial of service system crash via a crafted web page that is visited with Google Chrome or Mozilla Firefox, as demonstrated by the lots-of-polys-example.html test page in the Khronos WebGL SDK...
CVE-2011-2603
The NVIDIA 9400M driver 6.2.6 on Mac OS X 10.6.7 allows remote attackers to cause a denial of service desktop hang via a crafted web page that is visited with Google Chrome or Mozilla Firefox, as demonstrated by the lots-of-polys-example.html test page in the Khronos WebGL SDK...
CVE-2011-2601
The GPU support functionality in Mac OS X does not properly restrict rendering time, which allows remote attackers to cause a denial of service desktop hang via vectors involving WebGL and 1 shader programs or 2 complex 3D geometry, as demonstrated by using Mozilla Firefox or Google Chrome to vis...
CVE-2011-2600
The GPU support functionality in Windows XP does not properly restrict rendering time, which allows remote attackers to cause a denial of service system crash via vectors involving WebGL and 1 shader programs or 2 complex 3D geometry, as demonstrated by using Mozilla Firefox or Google Chrome to...
CVE-2025-4904
A vulnerability has been found in D-Link DI-7003GV2 24.04.18D1 R68125 and classified as problematic. This vulnerability affects the function sub41F0FC of the file /H5/webgl.data. The manipulation leads to information disclosure. The attack can be initiated remotely. The exploit has been disclosed...
D-Link DI-7003GV2 安全漏洞
The D-Link DI-7003GV2 is a router from China-based AUO D-Link. A security vulnerability exists in the D-Link DI-7003GV2, which stems from improper handling of the file /H5/webgl.asp function sub41F4F0, which can be exploited by an attacker to cause an unverified password change...
D-Link DI-7003GV2 访问控制错误漏洞
The D-Link DI-7003GV2 is a router from China-based AUO D-Link. The D-Link DI-7003GV2 suffers from an information disclosure vulnerability that originates from improper access control in the file /H5/webgl.data function sub41F0FC, which can be exploited by an attacker to cause information disclosu...