Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2015-7139

Malware in sbrugna...

5CVSS7.8AI score0.02804EPSS
Exploits0References18
Prion
Prion
added 2015/12/16 11:59 a.m.21 views

Design/Logic Flaw

Mozilla Firefox before 43.0 does not properly restrict the availability of IFRAME Resource Timing API times, which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via crafted JavaScript code that leverages history.back and performance.getEntries calls, a...

5CVSS6.8AI score0.02804EPSS
Exploits0References14Affected Software4
UbuntuCve
UbuntuCve
added 2015/12/15 12:0 a.m.24 views

CVE-2015-7207

Mozilla Firefox before 43.0 does not properly restrict the availability of IFRAME Resource Timing API times, which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via crafted JavaScript code that leverages history.back and performance.getEntries calls, a...

5CVSS7AI score0.02804EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/09/17 12:0 a.m.45 views

RHEL 6 : chromium-browser (RHSA-2015:1712)

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2015:1712 advisory. Chromium is an open-source web browser, powered by WebKit Blink. Several flaws were found in the processing of malformed web content. A web...

7.5CVSS8.7AI score0.0224EPSS
Exploits2References25
securityvulns
securityvulns
added 2015/09/14 12:0 a.m.103 views

[USN-2735-1] Oxide vulnerabilities

========================================================================== Ubuntu Security Notice USN-2735-1 September 08, 2015 oxide-qt vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives...

7.5CVSS0.9AI score0.02568EPSS
Exploits2
OpenVAS
OpenVAS
added 2015/09/09 12:0 a.m.30 views

Ubuntu: Security Advisory (USN-2735-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.02568EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2015/09/07 12:0 a.m.42 views

Google Chrome Multiple Vulnerabilities-01 (Sep 2015) - Windows

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

7.5CVSS8.5AI score0.02677EPSS
Exploits2References1
CVE
CVE
added 2015/09/03 10:0 p.m.87 views

CVE-2015-1300

CVE-2015-1300 affects Blink (Chrome’s rendering engine): FrameFetchContext::updateTimingInfoForIFrameNavigation does not properly restrict IFRAME Resource Timing API times, enabling a remote attacker to glean sensitive info via crafted JavaScript using history.back. Affects Chrome before 45.0.245...

5CVSS8.2AI score0.01747EPSS
Exploits0References10Affected Software1
FreeBSD
FreeBSD
added 2015/09/01 12:0 a.m.44 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 29 security fixes in this release, including: 516377 High CVE-2015-1291: Cross-origin bypass in DOM. Credit to anonymous. 522791 High CVE-2015-1292: Cross-origin bypass in ServiceWorker. Credit to Mariusz Mlynski. 524074 High CVE-2015-1293: Cross-origin bypass in...

7.5CVSS8.7AI score0.0224EPSS
Exploits2References1
Rows per page
Query Builder