CVE-2022-32756

IBM Security Verify Directory 10.0.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 228507...

CVE-2022-24762

sysend.js is a library that allows a user to send messages between pages that are open in the same browser. Users that use cross-origin communication may have their communications intercepted. Impact is limited by the communication occurring in the same browser. This issue has been patched in...

The vulnerability of Blink rendering module in Google Chrome browsers allows attackers to trigger false browser messages.

The vulnerability of Google Chrome’s Blink engine exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to trigger false browser messages using a specially created HTML page...

icedtea-web: insecure temporary file use flaw in LiveConnect implementation

The LiveConnect implementation in plugin/icedteanp/IcedTeaNPPlugin.cc in IcedTea-Web before 1.4.2 allows local users to read the messages between a Java applet and a web browser by pre-creating a temporary socket file with a predictable name in /tmp...

Microsoft SMB Client Remote Code Execution Vulnerabilities (2511455)

This host is missing a critical security update according to Microsoft Bulletin MS11-019. OpenVAS Vulnerability Test $Id: secpodms11-019.nasl 8724 2018-02-08 15:02:56Z cfischer $ Microsoft SMB Client Remote Code Execution Vulnerabilities 2511455 Authors: Veerendra GG Copyright: Copyright c 2011...