18 matches found
SUSE CVE-2026-10943
Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
DEBIAN-CVE-2026-10948
Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
CVE-2026-10943
Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
Fedora 43 : chromium (2026-b17799ac62)
The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-b17799ac62 advisory. Update to 148.0.7778.178 CVE-2026-9111: Use after free in WebRTC CVE-2026-9110: Inappropriate implementation in UI CVE-2026-9112: Use after free in...
MiracleLinux 4 : firefox-78.4.0-2.0.1.AXS4 (AXSA:2020-834:21)
The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-834:21 advisory. Mozilla: Memory safety bugs fixed in Firefox 82 and Firefox ESR 78.4 CVE-2020-15683 chromium-browser: Use after free in WebRTC CVE-2020-15969 Tenable...
SUSE-SU-2026:20031-1 Security update for MozillaFirefox
This update for MozillaFirefox fixes the following issues: Changes in MozillaFirefox: Firefox Extended Support Release 140.6.0 ESR was released: Fixed: Various security fixes. MFSA 2025-94 bsc1254551: CVE-2025-14321: Use-after-free in the WebRTC: Signaling component CVE-2025-14322: Sandbox escape...
AlmaLinux 8 : firefox (ALSA-2025:22363)
The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2025:22363 advisory. firefox: Mitigation bypass in the DOM: Security component CVE-2025-13018 firefox: Use-after-free in the Audio/Video component CVE-2025-13014 firefox:...
SUSE SLED15: MozillaThunderbird / MozillaThunderbird-translations-common / etc (SUSE-SU-2025:4195-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:4195-1 advisory. - Update Mozilla Thunderbird to version 140.5 bsc1253188 - CVE-2025-13012: Race condition in the...
Important: firefox security update
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: Mitigation bypass in the DOM: Security component CVE-2025-13018 firefox: Use-after-free in the Audio/Video component CVE-2025-13014 firefox: Incorrect boundary...
Fedora 41 : chromium (2025-f814c5f499)
The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-f814c5f499 advisory. - Update to 140.0.7339.185 CVE-2025-10585: Type Confusion in V8 CVE-2025-10500: Use after free in Dawn CVE-2025-10501: Use after free in WebRTC...
Fedora 43 : chromium (2025-2cec357f64)
The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-2cec357f64 advisory. - Update to 140.0.7339.185 CVE-2025-10585: Type Confusion in V8 CVE-2025-10500: Use after free in Dawn CVE-2025-10501: Use after free in WebRTC...
Fedora 42 : chromium (2025-bb1ae3ee9c)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-bb1ae3ee9c advisory. - Update to 140.0.7339.185 CVE-2025-10585: Type Confusion in V8 CVE-2025-10500: Use after free in Dawn CVE-2025-10501: Use after free in WebRTC...
Microsoft Edge (Chromium) < 140.0.3485.81 Multiple Vulnerabilities
The version of Microsoft Edge installed on the remote Windows host is prior to 140.0.3485.81. It is, therefore, affected by multiple vulnerabilities as referenced in the September 19, 2025 advisory. - Type Confusion in V8. Reported by Google Threat Analysis Group on 2025-09-16. CVE-2025-10585 - U...
Linux Distros Unpatched Vulnerability : CVE-2025-10501
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in WebRTC in Google Chrome prior to 140.0.7339.185 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
Google Chrome < 140.0.7339.185 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 140.0.7339.185. It is, therefore, affected by multiple vulnerabilities as referenced in the 202509stable-channel-update-for-desktop17 advisory. - Use after free in WebRTC. Reported by sherkito on 2025-08-23...
CVE-2025-7657
Use after free in WebRTC in Google Chrome prior to 138.0.7204.157 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
PT-2024-5214 · Google +4 · Google Chrome +4
Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 121.0.6167.85 Description: The issue is related to a Use After Free in WebRTC, allowing a remote attacker to potentially exploit heap corruption via a crafted HTML page. The severity of this issue is considered...
DEBIAN-CVE-2023-1218
Use after free in WebRTC in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...