Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2023/11/25 12:0 a.m.58 views

GLSA-202311-11 : QtWebEngine: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202311-11 QtWebEngine: Multiple Vulnerabilities - Heap buffer overflow in WebRTC in Google Chrome prior to 103.0.5060.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2022-2294 -...

8.8CVSS8.3AI score0.70461EPSS
Exploits8References124
ALT Linux
ALT Linux
added 2023/04/04 12:0 a.m.45 views

Security fix for the ALT Linux 10 package yandex-browser-stable version 23.1.2.1033-alt1

23.1.2.1033-alt1 built April 4, 2023 Yandex Browser Team in task 317282 March 20, 2023 Yandex Browser Team - browser updated to 23.1.2 + High CVE-2022-4436: Use after free in Blink Media. + High CVE-2022-4437: Use after free in Mojo IPC. + High CVE-2022-4438: Use after free in Blink Frames. + Hig...

8.5AI score0.31864EPSS
Exploits8
Mageia
Mageia
added 2022/12/06 11:32 p.m.70 views

Updated chromium-browser-stable packages fix security vulnerability

The chromium-browser-stable package has been updated to the new 108 branch with the 108.0.5359.94 release, fixing many bugs and 29 vulnerabilities, together with 107.0.5304.121 and 108.0.5359.71. Some of the security fixes are - CVE-2022-4174: Type Confusion in V8. Reported by Zhenghang Xiao...

9.6CVSS9.1AI score0.31864EPSS
Exploits4References2
Microsoft CVE
Microsoft CVE
added 2022/12/05 8:0 a.m.30 views

Chromium: CVE-2022-4180 Use after free in Mojo

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.4AI score0.00473EPSS
Exploits0
NVD
NVD
added 2022/11/30 12:15 a.m.18 views

CVE-2022-4180

Use after free in Mojo in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. Chromium security severity: High...

8.8CVSS0.00473EPSS
Exploits0References4
CVE
CVE
added 2022/11/29 12:0 a.m.154 views

CVE-2022-4180

CVE-2022-4180 affects Google Chrome prior to 108.0.5359.71, involving a use-after-free in the Mojo component that can be triggered when a user is lured into installing a malicious Chrome extension. The underlying issue is heap corruption via crafted Extension payloads. The vulnerability is rated ...

8.8CVSS8.8AI score0.00473EPSS
Exploits0References4Affected Software1
AlpineLinux
AlpineLinux
added 2022/11/29 12:0 a.m.31 views

CVE-2022-4180

Use after free in Mojo in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. Chromium security severity: High...

8.8CVSS9AI score0.00473EPSS
Exploits0
Rows per page
Query Builder