Lucene search
K

350 matches found

Opera Security Advisories
Opera Security Advisories
added 2022/11/11 12:0 a.m.9 views

Safe Browsing now on Opera for Android

Security Safe Browsing now on Opera for Android Share November 11th, 2022 Hi Android users! We’re happy to share that Opera for Android 72 now features Safe Browsing to keep you even safer when browsing or shopping online on your Android device. Safe Browsing protects your online experience by...

8.8CVSS6.8AI score0.05036EPSS
Exploits4References1
ATTACKERKB
ATTACKERKB
added 2022/08/03 4:15 p.m.2 views

CVE-2022-37396

In JetBrains Rider before 2022.2 Trust and Open Project dialog could be bypassed, leading to local code execution...

7.8CVSS7.5AI score0.00187EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2022/08/03 12:0 a.m.3 views

JetBrains Rider 安全漏洞

JetBrains Rider is a cross-platform .NET integrated development environment IDE from the Czech company JetBrains. A security vulnerability exists in JetBrains Rider versions prior to 2022.2, which stems from the ability to bypass the trust and open project dialogs, which can lead to local code...

7.8CVSS7.8AI score0.00187EPSS
Exploits0References2
OSV
OSV
added 2022/05/24 5:40 p.m.22 views

GHSA-JV4C-7JQQ-M34X CKEditor 4 ReDoS Vulnerability

It was possible to execute a ReDoS-type attack inside CKEditor 4 before 4.16 by persuading a victim to paste crafted text into the Styles input of specific dialogs in the Advanced Tab for Dialogs plugin...

6.5CVSS6.6AI score0.01962EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2022/05/24 5:40 p.m.23 views

CKEditor 4 ReDoS Vulnerability

It was possible to execute a ReDoS-type attack inside CKEditor 4 before 4.16 by persuading a victim to paste crafted text into the Styles input of specific dialogs in the Advanced Tab for Dialogs plugin...

6.5CVSS6.7AI score0.01962EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2022/05/17 12:30 a.m.14 views

GHSA-XJ94-RGF9-CQ37 Umbraco CMS vulnerable to stored XSS

Cross-site scripting XSS vulnerability in Umbraco CMS before 7.7.3 allows remote attackers to inject arbitrary web script or HTML via the "page name" aka nodename parameter during the creation of a new page, related to Umbraco.Web.UI/umbraco/dialogs/Publish.aspx.cs and...

5.4CVSS5.3AI score0.00845EPSS
Exploits0References4
NVD
NVD
added 2022/02/22 8:15 p.m.14 views

CVE-2022-23608

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In versions up to and including 2.11.1 when in a dialog set or forking scenario, a hash key shared by multiple UAC dialogs can...

9.8CVSS0.03993EPSS
Exploits0References11
Prion
Prion
added 2022/02/22 8:15 p.m.27 views

Design/Logic Flaw

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In versions up to and including 2.11.1 when in a dialog set or forking scenario, a hash key shared by multiple UAC dialogs can...

7.5CVSS9.2AI score0.03993EPSS
Exploits0References10Affected Software4
OSV
OSV
added 2022/02/22 8:15 p.m.2 views

UBUNTU-CVE-2022-23608

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In versions up to and including 2.11.1 when in a dialog set or forking scenario, a hash key shared by multiple UAC dialogs can...

9.8CVSS7.2AI score0.03993EPSS
Exploits0References5
CNNVD
CNNVD
added 2022/02/22 12:0 a.m.4 views

PJSIP 资源管理错误漏洞

PJSIP is a free and open source multimedia communications library written in C that implements standards-based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. PJSIP suffers from a Resource Management Error vulnerability that stems from the fact that in versions prior to 2.11.1, in a dialog...

9.8CVSS8.1AI score0.03993EPSS
Exploits0References22
Veracode
Veracode
added 2022/02/14 9:49 a.m.28 views

Information Disclosure

firefox is vulnerable to information disclosure. The vulnerability exists allowing JavaScript Dialogs to be displayed over other domains on Firefox for Android...

4.3CVSS1.9AI score0.0037EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2021/12/15 7:15 p.m.21 views

Information disclosure

In getAlias of BluetoothDevice.java, there is a possible way to create misleading permission dialogs due to missing data filtering. This could lead to local information disclosure with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-...

4.7CVSS5.1AI score0.0014EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2021/09/09 12:15 p.m.3 views

CVE-2021-40223

Rittal CMC PU III Web management version V3.11.002 fails to sanitize user input on several parameters of the configuration User Configuration dialog, Task Configuration dialog and set logging filter dialog. This allows an attacker to backdoor the device with HTML and browser-interpreted content...

5.4CVSS5.8AI score0.00604EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/09/09 12:0 a.m.6 views

Rittal CMC PU III 跨站脚本漏洞

Rittal CMC PU III is a monitoring system from Rittal, Germany. A security vulnerability exists in the Rittal CMC PU III Web management version V3.11.002, which originates from a failure of the web application to clean up user input on multiple parameters of the configuration User Configuration...

5.4CVSS5.8AI score0.00604EPSS
Exploits1References2
OSV
OSV
added 2021/08/11 12:0 a.m.4 views

UBUNTU-CVE-2021-29987

After requesting multiple permissions, and closing the first permission panel, subsequent permission panels will be displayed in a different position but still record a click in the default location, making it possible to trick a user into accepting a permission they did not want to. This bug onl...

6.5CVSS7.3AI score0.00945EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/08/10 12:0 a.m.5 views

Mozilla Firefox 安全漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. Mozilla Firefox has a security vulnerability that exists due to the way Firefox displays permission panels. After requesting multiple permissions and closing the first permission panel, subsequent...

6.5CVSS7.7AI score0.00945EPSS
Exploits0References19
Github Security Blog
Github Security Blog
added 2021/07/02 7:18 p.m.205 views

Cross-site scripting (XSS) from field and configuration text displayed in the Panel

On Saturday, @hdodov reported that the Panel's ListItem component used in the pages and files section for example displayed HTML in page titles as it is. This could be used for cross-site scripting XSS attacks. We used his report as an opportunity to find and fix XSS issues related to dynamic sit...

7.1CVSS0.2AI score0.00532EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2021/06/04 5:15 p.m.14 views

CVE-2021-1517

A vulnerability in the multimedia viewer feature of Cisco Webex Meetings and Cisco Webex Meetings Server could allow an authenticated, remote attacker to bypass security protections. This vulnerability is due to unsafe handling of shared content within the multimedia viewer feature. An attacker...

5CVSS0.00825EPSS
Exploits0References1
OSV
OSV
added 2021/06/04 5:15 p.m.4 views

CVE-2021-1517

A vulnerability in the multimedia viewer feature of Cisco Webex Meetings and Cisco Webex Meetings Server could allow an authenticated, remote attacker to bypass security protections. This vulnerability is due to unsafe handling of shared content within the multimedia viewer feature. An attacker...

4.3CVSS5.9AI score0.00825EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/06/04 4:45 p.m.6 views

CVE-2021-1517 Cisco Webex Meetings and Webex Meetings Server Multimedia Sharing Security Bypass Vulnerability

A vulnerability in the multimedia viewer feature of Cisco Webex Meetings and Cisco Webex Meetings Server could allow an authenticated, remote attacker to bypass security protections. This vulnerability is due to unsafe handling of shared content within the multimedia viewer feature. An attacker...

5CVSS7AI score0.00825EPSS
Exploits0References1
Rows per page
Query Builder