Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Vulnrichment
Vulnrichmentadded 2022/09/26 3:1 p.m.3 views

CVE-2022-3047

Insufficient policy enforcement in Extensions API in Google Chrome prior to 105.0.5195.52 allowed an attacker who convinced a user to install a malicious extension to bypass downloads policy via a crafted HTML page...

5.8AI score0.00121EPSS
Exploits0References4
CNNVD
CNNVDadded 2022/08/30 12:0 a.m.2 views

Google Chrome 安全漏洞

Google Chrome is a web browser from Google, Inc. A security vulnerability exists in Google Chrome that stems from insufficient policy enforcement in the Extensions API and affects the following products and versions: Chrome prior to 105.0.5195.52 Mac/linux and 105.0.5195.52/53/54 Windows...

6.5CVSS8.8AI score0.00121EPSS
Exploits0References9
OSV
OSVadded 2019/06/27 5:15 p.m.0 views

UBUNTU-CVE-2018-16086

Insufficient policy enforcement in extensions API in Google Chrome prior to 69.0.3497.81 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension...

5.4CVSS5.8AI score0.00083EPSS
Exploits0References3
Veracode
Veracodeadded 2019/05/02 5:0 a.m.22 views

Authentication Bypass

The openstack-heat packages provide heat, a Python implementation of the OpenStack Orchestration engine, to launch multiple composite cloud applications based on templates. It was found that heat did not properly enforce cloudformation-compatible API policy rules. An in-instance attacker could us...

4CVSS6AI score0.0033EPSS
Exploits4References8Affected Software1
Drupal
Drupaladded 2018/10/17 12:0 a.m.560 views

Drupal Core - Multiple Vulnerabilities - SA-CORE-2018-006

Content moderation - Moderately critical - Access bypass - Drupal 8 In some conditions, content moderation fails to check a users access to use certain transitions, leading to an access bypass. In order to fix this issue, the following changes have been made to content moderation which may have...

8.4AI score
Exploits0References31
RedHat Linux
RedHat Linuxadded 2014/01/22 6:31 p.m.23 views

Moderate: Red Hat Security Advisory: openstack-heat security, bug fix, and enhancement update

Updated openstack-heat packages that fix two security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux OpenStack Platform 4.0. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring...

4CVSS5.9AI score0.0033EPSS
Exploits4References6
seebug.org
seebug.orgadded 2013/12/16 12:0 a.m.24 views

OpenStack Heat CFN策略安全绕过漏洞

Bugtraq ID:64243 CVE ID:CVE-2013-6426 OpenStack Heat类似于亚马逊的CloudFormation,它可以基于政策对可能发生的情况定义一个模板。 OpenStack Heat默认API策略实施存在安全漏洞,通过调用CreateStack或UpdateStack方法,in-instance用户可创建或者更新与默认策略相冲突的栈。使用Heat's cloudformation-compatible API的设置受此漏洞影响。 0 OpenStack Heat 2013.x 厂商补丁: OpenStack -----...

4CVSS0.3AI score0.0033EPSS
Exploits2
Rows per page
Query Builder