7310 matches found
CVE-2025-34090
Rejected reason: Neither filed by Chrome nor a valid security vulnerability...
CVE-2025-34090
The CVE-2025-34090 entries reveal a local security bypass in Google Chrome related to the AppBound cookie encryption mechanism. Root cause: insufficient validation of COM server paths during inter-process communication allows a low-privilege attacker to hijack the COM CLSID registration used by C...
CVE-2025-34090
...
CVE-2025-34090
...
PT-2025-27671 · Google · Google Chrome
Name of the Vulnerable Software and Affected Versions: Google Chrome affected versions not specified Description: A security bypass issue exists in the AppBound cookie encryption mechanism of Google Chrome due to insufficient validation of COM server paths during inter-process communication. This...
Exploit for Command Injection in Google Android
unisoc-su A method for CVE-2025-31710https://nvd.nist.gov/v...
CVE-2025-27811
A local privilege escalation in the razerelevationservice.exe in Razer Synapse 4 through 4.0.86.2502180127 allows a local attacker to escalate their privileges via a vulnerable COM interface in the target service...
CVE-2025-27811
A local privilege escalation in the razerelevationservice.exe in Razer Synapse 4 through 4.0.86.2502180127 allows a local attacker to escalate their privileges via a vulnerable COM interface in the target service...
CVE-2025-27811
A local privilege escalation in the razerelevationservice.exe in Razer Synapse 4 through 4.0.86.2502180127 allows a local attacker to escalate their privileges via a vulnerable COM interface in the target service...
CVE-2025-27811
A local privilege escalation in the razerelevationservice.exe in Razer Synapse 4 through 4.0.86.2502180127 allows a local attacker to escalate their privileges via a vulnerable COM interface in the target service...
CVE-2025-27811
CVE-2025-27811 concerns a local privilege escalation in Razer Synapse 4, specifically via the razer_elevation_service.exe (version 4.0.86.2502180127) that exposes a vulnerable COM interface. The issue allows a local attacker to escalate privileges through this COM interface in the target service....
PT-2025-23806 · Razer · Razer Synapse
Name of the Vulnerable Software and Affected Versions: Razer Synapse versions 4 through 4.0.86.2502180127 Description: A local privilege escalation issue in the razer elevation service.exe allows a local attacker to escalate their privileges via a vulnerable COM interface in the target service...
CVE-2025-27811
A local privilege escalation in the razerelevationservice.exe in Razer Synapse 4 through 4.0.86.2502180127 allows a local attacker to escalate their privileges via a vulnerable COM interface in the target service...
CVE-2024-42191
HCL Traveler for Microsoft Outlook HTMO is susceptible to a COM hijacking vulnerability which could allow an attacker to modify or replace the application with malicious content...
Malicious code in com.meta.utilities (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 592e7d2fdd81405fea876197df41d2cca8625ba879c21ace66ff6e3fd9a699e5 Any computer that has this package installed or running should be considered...
CVE-2024-42191
HCL Traveler for Microsoft Outlook HTMO is susceptible to a COM hijacking vulnerability which could allow an attacker to modify or replace the application with malicious content...
CVE-2024-42191 HCL Traveler for Microsoft Outlook (HTMO) is susceptible to COM hijacking
HCL Traveler for Microsoft Outlook HTMO is susceptible to a COM hijacking vulnerability which could allow an attacker to modify or replace the application with malicious content...
CVE-2024-42191 HCL Traveler for Microsoft Outlook (HTMO) is susceptible to COM hijacking
HCL Traveler for Microsoft Outlook HTMO is susceptible to a COM hijacking vulnerability which could allow an attacker to modify or replace the application with malicious content...
CVE-2024-42191
CVE-2024-42191 affects HCL Traveler for Microsoft Outlook (HTMO). The vulnerability is a COM hijacking issue that could allow an attacker to modify or replace the HTMO application with malicious content. Documented impact indicates potential high integrity and confidentiality impact; the NVD/CVE ...
Krüger&Matz com.pri.applock 安全漏洞
Krüger&Matz com.pri.applock is a mobile application component from Krüger&Matz. A security vulnerability exists in Krüger&Matz com.pri.applock, which stems from a content provider query method that allows PIN disclosure...