Lucene search
K

27 matches found

OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.26 views

openSUSE: Security Advisory for chromium (openSUSE-SU-2022:10099-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.3AI score0.04493EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.30 views

openSUSE: Security Advisory for opera (openSUSE-SU-2022:10109-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.3AI score0.04493EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 3:32 a.m.3 views

SUSE CVE-2022-2856

Insufficient validation of untrusted input in Intents in Google Chrome on Android prior to 104.0.5112.101 allowed a remote attacker to arbitrarily browse to a malicious website via a crafted HTML page...

6.5CVSS7.4AI score0.04493EPSS
Exploits1References6
The Hacker News
The Hacker News
added 2022/12/03 4:41 a.m.87 views

Google Rolls Out New Chrome Browser Update to Patch Yet Another Zero-Day Vulnerability

Search giant Google on Friday released an out-of-band security update to fix a new actively exploited zero-day flaw in its Chrome web browser. The high-severity flaw, tracked as CVE-2022-4262, concerns a type confusion bug in the V8 JavaScript engine. Clement Lecigne of Google's Threat Analysis...

9.6CVSS1.8AI score0.70461EPSS
Exploits8
The Hacker News
The Hacker News
added 2022/11/25 1:12 p.m.213 views

Update Chrome Browser Now to Patch New Actively Exploited Zero-Day Flaw

Google on Thursday released software updates to address yet another zero-day flaw in its Chrome web browser. Tracked as CVE-2022-4135, the high-severity vulnerability has been described as a heap buffer overflow in the GPU component. Clement Lecigne of Google's Threat Analysis Group TAG has been...

9.6CVSS0.8AI score0.70461EPSS
Exploits6
OpenVAS
OpenVAS
added 2022/10/03 12:0 a.m.28 views

Fedora: Security Advisory for chromium (FEDORA-2022-3f28aa88cf)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.6CVSS7.8AI score0.24738EPSS
Exploits5References4
NVD
NVD
added 2022/09/26 4:15 p.m.17 views

CVE-2022-2856

Insufficient validation of untrusted input in Intents in Google Chrome on Android prior to 104.0.5112.101 allowed a remote attacker to arbitrarily browse to a malicious website via a crafted HTML page...

6.5CVSS0.04493EPSS
Exploits1References4
OSV
OSV
added 2022/09/26 4:15 p.m.6 views

UBUNTU-CVE-2022-2856

Insufficient validation of untrusted input in Intents in Google Chrome on Android prior to 104.0.5112.101 allowed a remote attacker to arbitrarily browse to a malicious website via a crafted HTML page...

6.5CVSS7.3AI score0.04493EPSS
Exploits1References3
CVE
CVE
added 2022/09/26 3:1 p.m.962 views

CVE-2022-2856

CVE-2022-2856 is a Google Chrome/Chromium Intents input-validation vulnerability. Affected component: Chrome/Chromium on Android (and Chromium-derived browsers) prior to 104.0.5112.101; root cause: insufficient validation of untrusted input passed via Intents, enabling a remote attacker to load a...

6.5CVSS6.6AI score0.04493EPSS
In wildExploits1References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/08/30 12:0 a.m.52 views

openSUSE 15 Security Update : opera (openSUSE-SU-2022:10109-1)

The remote SUSE Linux SUSE15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:10109-1 advisory. - Use after free in FedCM. CVE-2022-2852 - Heap buffer overflow in Downloads. CVE-2022-2853 - Use after free in SwiftShader. CVE-2022-2854...

8.8CVSS8.4AI score0.04493EPSS
Exploits1References21
Tenable Nessus
Tenable Nessus
added 2022/08/26 12:0 a.m.53 views

openSUSE 15 Security Update : chromium (openSUSE-SU-2022:10099-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:10099-1 advisory. - Use after free in FedCM. CVE-2022-2852 - Heap buffer overflow in Downloads. CVE-2022-2853 - Use after free in SwiftShader. CVE-2022-2854...

8.8CVSS8.4AI score0.04493EPSS
Exploits1References22
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.29 views

Mageia: Security Advisory (MGASA-2022-0307)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.3AI score0.04493EPSS
Exploits1References7
Mageia
Mageia
added 2022/08/25 9:21 p.m.66 views

Updated chromium-browser-stable packages fix security vulnerability

The chromium-browser-stable package has been updated to the 104.0.5112.101 branch, fixing many bugs and 11 CVE. Google is aware that an exploit for CVE-2022-2856 exists in the wild. Some of the addressed CVE are listed below: Critical CVE-2022-2852: Use after free in FedCM. High CVE-2022-2854: Us...

8.8CVSS1.6AI score0.04493EPSS
Exploits1References3
OPENSUSE Linux
OPENSUSE Linux
added 2022/08/25 12:0 a.m.41 views

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2022:10099-1 Rating: important References: 1202509 Cross-References: CVE-2022-2852 CVE-2022-2853 CVE-2022-2854 CVE-2022-2855 CVE-2022-2856 CVE-2022-2857 CVE-2022-2858 CVE-2022-2859 CVE-2022-2860 CVE-2022-2861...

8.8CVSS6.9AI score0.04493EPSS
Exploits1References1
Malwarebytes
Malwarebytes
added 2022/08/22 3:0 p.m.303 views

CISA wants you to patch these actively exploited vulnerabilities before September 8

On Thursday, CISA the US Cybersecurity and Infrastructure Security Agency updated its catalog of actively exploited vulnerabilities by adding seven new entries. These flaws were found in Apple, Google, Microsoft, Palo Alto Networks, and SAP products. CISA set the due date for everyone to patch th...

10CVSS0.9834EPSS
Exploits30
hivepro
hivepro
added 2022/08/19 4:40 a.m.61 views

Chrome’s zero-day flaw allows arbitrary code execution

Threat Level Vulnerability Report For a detailed advisory, download the pdf file here Summary A vulnerabilityCVE-2022-2856 in Google Chrome, has been exploited in the wild. Additionally, Chrome has addressed several other use-after-free vulnerabilities in multiple components, including FedCM,...

2.4AI score0.04493EPSS
Exploits1
ThreatPost
ThreatPost
added 2022/08/18 2:31 p.m.161 views

Google Patches Chrome’s Fifth Zero-Day of the Year

Google has patched the fifth actively exploited zero-day vulnerability discovered in Chrome this year as one in a series of fixes included in a stable channel update released Wednesday. The bug, tracked as CVE-2022-2856 and rated as high on the Common Vulnerability Scoring System CVSS, is...

8.8CVSS8.9AI score0.70461EPSS
Exploits4References16
Tenable Nessus
Tenable Nessus
added 2022/08/18 12:0 a.m.65 views

Debian DSA-5212-1 : chromium - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5212 advisory. - Use after free in FedCM. CVE-2022-2852 - Heap buffer overflow in Downloads. CVE-2022-2853 - Use after free in SwiftShader. CVE-2022-2854 - Use after free in...

8.8CVSS8.4AI score0.04493EPSS
Exploits1References24
OpenVAS
OpenVAS
added 2022/08/18 12:0 a.m.30 views

Google Chrome Security Update (stable-channel-update-for-desktop_16-2022-08) - Mac OS X

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

8.8CVSS8.6AI score0.04493EPSS
Exploits1References3
The Hacker News
The Hacker News
added 2022/08/17 12:2 p.m.656 views

New Google Chrome Zero-Day Vulnerability Being Exploited in the Wild

Google on Tuesday rolled out patches for Chrome browser for desktops to contain an actively exploited high-severity zero-day flaw in the wild. Tracked as CVE-2022-2856, the issue has been described as a case of insufficient validation of untrusted input in Intents. Security researchers Ashley She...

8.8CVSS1.1AI score0.70461EPSS
Exploits4
Rows per page
Query Builder