Lucene search
K

9 matches found

Cvelist
Cvelist
added 2025/06/03 5:41 p.m.67 views

CVE-2025-30360 webpack-dev-server users' source code may be stolen when they access a malicious web site with non-Chromium based browser

webpack-dev-server allows users to use webpack with a development server that provides live reloading. Prior to version 5.2.1, webpack-dev-server users' source code may be stolen when you access a malicious web site with non-Chromium based browser. The Origin header is checked to prevent Cross-si...

6.5CVSS0.00287EPSS
Exploits1References4
OSV
OSV
added 2025/02/05 7:51 p.m.58 views

MGASA-2025-0037 Updated chromium-browser-stable packages fix security vulnerability

Use after free in DevTools. CVE-2025-0762...

8.8CVSS9.1AI score0.00339EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/08/08 12:0 a.m.5 views

The vulnerability of Chromium, Firefox, and Safari browsers lies in errors during the processing of input data, allowing attackers to execute arbitrary code.

The vulnerability of the Chromium, Firefox, and Safari browsers’ software is related to errors in processing input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely, provided that the user clicks on a specially crafted link...

10CVSS6AI score
Exploits0References1
Veracode
Veracode
added 2022/01/15 12:8 a.m.19 views

Policy Bypass

chromium-browser is vulnerable to policy bypass. The vulnerability exists in service workers which allows an attacker to bypass policy...

6.5CVSS4.7AI score0.01481EPSS
Exploits1References9Affected Software3
Veracode
Veracode
added 2021/10/07 10:16 a.m.35 views

Denial Of Service (DoS)

chromium-browser:bionic is vulnerable denial of service. It allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS2.5AI score0.01349EPSS
Exploits1References8Affected Software2
RedHat Linux
RedHat Linux
added 2020/06/15 12:55 p.m.3 views

chromium-browser: Insufficient policy enforcement in developer tools

Insufficient policy enforcement in developer tools in Google Chrome prior to 83.0.4103.61 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension...

9.6CVSS7.3AI score0.014EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2019/04/08 7:48 a.m.3 views

chromium-browser: CSP bypass with blob URL

Insufficient policy enforcement in Blink in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to bypass content security policy via a crafted HTML page...

6.5CVSS7.4AI score0.01046EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2014/05/17 12:0 a.m.31 views

Debian Security Advisory DSA 2930-1 (chromium-browser - security update)

Several vulnerabilties have been discovered in the chromium web browser. CVE-2014-1740 Collin Payne discovered a use-after-free issue in chromium's WebSockets implementation. CVE-2014-1741 John Butler discovered multiple integer overflow issues in the Blink/Webkit document object model...

7.5CVSS0.1AI score0.01648EPSS
Exploits0References1
OSV
OSV
added 2013/11/09 6:58 p.m.11 views

MGASA-2013-0321 Updated chromium-browser-stable packages fix multiple vulnerabilities

Updated chromium-browser-stable packages fix security vulnerabilities: Atte Kettunen of OUSPG discover a use-after-free issue in Blink's XML HTTP request implementation CVE-2013-2925. cloudfuzzer discovered a use-after-free issue in the list indenting implementation CVE-2013-2926. cloudfuzzer...

7.5CVSS6.3AI score0.01647EPSS
Exploits0References5
Rows per page
Query Builder