5838 matches found
Totolink NR1800X Buffer Overflow Vulnerability
TOTOLINK NR1800X is an outstanding 5G NR indoor Wi-Fi and SIP CPE from China's TOTOLINK. designed to provide fast and easy deployment of NR fixed data services in homes and offices. The Totolink NR1800X version 9.1.0u.6279B20210910 suffers from a buffer overflow vulnerability, which originates fr...
Google Chrome Number Error Vulnerability (CNVD-2024-06231)
Google Chrome is a web browser from Google, an American company. A numeric error vulnerability exists in versions prior to Google Chrome 120.0.6099.216, which stems from insufficient data validation. An attacker can exploit the vulnerability to install malicious extensions via specially crafted...
Tenda A18 Buffer Overflow Vulnerability
Tenda A18 is an AC1200 dual-band Wi-Fi repeater from China's Tenda. A buffer overflow vulnerability exists in Tenda A18 version v15.13.07.09, which originates from the devName parameter in the formSetDeviceName function failing to correctly validate the length of the input data, and can be...
Chromium: CVE-2024-0333 Insufficient data validation in Extensions
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Google Chrome Security Update (stable-channel-update-for-desktop_9-2024-01) - Mac OS X
Google Chrome is prone to a data validation vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome";...
Google Chrome Security Update (stable-channel-update-for-desktop_9-2024-01) - Windows
Google Chrome is prone to a data validation vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome";...
Google Chrome Security Update (stable-channel-update-for-desktop_9-2024-01) - Linux
Google Chrome is prone to a data validation vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome";...
TOTOLINK N350RT Buffer Overflow Vulnerability
The TOTOLINK N350RT is a small home router from China's Gion Electronics TOTOLINK. The TOTOLINK N350RT suffers from a buffer overflow vulnerability, which originates from the parameter v33 of the function main in /cgi-bin/cstecgi.cgi?action=login&flag=1 that fails to correctly validate the length...
Microsoft Edge (Chromium) < 120.0.2336.0 Multiple Vulnerabilities
The version of Microsoft Edge installed on the remote Windows host is prior to 120.0.2336.0. It is, therefore, affected by multiple vulnerabilities as referenced in the January 11, 2024 advisory. - Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.216 allowed an...
CVE-2024-0333
Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.216 allowed an attacker in a privileged network position to install a malicious extension via a crafted HTML page. Chromium security severity: High...
CVE-2024-0333
Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.216 allowed an attacker in a privileged network position to install a malicious extension via a crafted HTML page. Chromium security severity: High...
Input validation
Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.216 allowed an attacker in a privileged network position to install a malicious extension via a crafted HTML page. Chromium security severity: High...
CVE-2024-0333
CVE-2024-0333 involves Google Chrome/Chromium where the vulnerability resides in the Extensions subsystem. The root cause is insufficient data validation in Extensions, allowing a crafted HTML page to cause installation of a malicious extension when the user is in a privileged network position. A...
CVE-2024-0333
Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.216 allowed an attacker in a privileged network position to install a malicious extension via a crafted HTML page. Chromium security severity: High...
CVE-2024-0333
Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.216 allowed an attacker in a privileged network position to install a malicious extension via a crafted HTML page. Chromium security severity: High...
CVE-2024-0333
Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.216 allowed an attacker in a privileged network position to install a malicious extension via a crafted HTML page. Chromium security severity: High...
Cisco Unity Connection Unauthenticated Arbitrary File Upload Vulnerability
A vulnerability in the web-based management interface of Cisco Unity Connection could allow an unauthenticated, remote attacker to upload arbitrary files to an affected system and execute commands on the underlying operating system. This vulnerability is due to a lack of authentication in a...
CVE-2024-0333
Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.216 allowed an attacker in a privileged network position to install a malicious extension via a crafted HTML page. Chromium security severity: High...
FreeBSD : chromium -- security fix (ec8e4040-afcd-11ee-86bb-a8a1599412c6)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the ec8e4040-afcd-11ee-86bb-a8a1599412c6 advisory. - Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.216 allowed an attack...
KLA62930 DoS vulnerability in Google Chrome
Data validation vulnerability was found in Google Chrome. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Chrome Releases: Stable Channel Update for Desktop Related products Google-Chrome CVE list CVE-2024-0333 high Solution Update to the latest...