Lucene search
+L

6 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-0208

Malware in sbrugna...

9.3CVSS8AI score0.02104EPSS
Exploits0References5
vulnersOsv
vulnersOsv
added 2018/07/31 10:34 p.m.7 views

browsertime (>=1.0.0-alpha.0 <=1.0.0-beta.17), gome-sitespeed.io (>=1.0.0 <=1.2.3) +6 more potentially affected by CVE-2016-10694 via alto-saxophone (>=2.21.0 <=2.25.0)

alto-saxophone NPM version =2.21.0, =1.0.0-alpha.0, =1.0.0, =1.0.0, =4.0.0, =0.2.0, =0.1.0, =0.1.3 Source cves: CVE-2016-10694 Source advisory: OSV:GHSA-2P69-GXPM-5469...

9.3CVSS7.2AI score0.02104EPSS
Exploits0
CNVD
CNVD
added 2018/06/15 12:0 a.m.5 views

alto-saxophone code execution vulnerability

alto-saxophone is a module for installing and running Chromedriver on multiple platforms. A security vulnerability exists in alto-saxophone. The vulnerability stems from the program downloading binary resources over the HTTP protocol. A remote attacker could exploit the vulnerability by replacing...

9.3CVSS8.1AI score0.02104EPSS
Exploits0References1
NVD
NVD
added 2018/06/04 4:29 p.m.14 views

CVE-2016-10694

alto-saxophone is a module to install and launch Chromedriver for Mac, Linux or Windows. alto-saxophone versions below 2.25.1 download binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution RCE by swapping out the requested binary...

9.3CVSS8.3AI score0.02104EPSS
Exploits0References1
Prion
Prion
added 2018/06/04 4:29 p.m.19 views

Remote code execution

alto-saxophone is a module to install and launch Chromedriver for Mac, Linux or Windows. alto-saxophone versions below 2.25.1 download binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution RCE by swapping out the requested binary...

9.3CVSS8AI score0.02104EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2018/06/04 4:0 p.m.66 views

CVE-2016-10694

The CVE-2016-10694 entry concerns the alto-saxophone module used to install and launch Chromedriver on Mac, Linux, or Windows. Versions below 2.25.1 download binary resources over HTTP, allowing MITM manipulation of the binary and potentially enabling remote code execution if an attacker on the n...

9.3CVSS8.2AI score0.02104EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder