Lucene search
K

61 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.2 views

Astra Linux – Vulnerability in Chromium

In the Managed Devices API of Google Chrome, before version 104.0.5112.79, a remote attacker who convinced a user to enable a specific Enterprise policy could potentially exploit heap corruption through a crafted HTML page...

8.8CVSS7.3AI score0.00615EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Chromium

Insufficient policy enforcement in downloads within Google Chrome prior to 117.0.5938.62 allowed a remote attacker to bypass enterprise policy restrictions through a malicious download. Chromium security severity: Medium...

4.3CVSS5.8AI score0.00616EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in Chromium

Insufficient policy enforcement in the Extensions API in Google Chrome prior to 116.0.5845.96 allowed an attacker who convinced a user to install a malicious extension to bypass an enterprise policy through a crafted HTML page. Chromium security severity: Medium...

8.8CVSS7.3AI score0.00664EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Chromium

Inappropriate implementation in the Extensions API in Google Chrome prior to 118.0.5993.70 allowed an attacker who convinced a user to install a malicious extension to bypass an enterprise policy through a crafted HTML page. Chromium security severity: Medium...

6.5CVSS6.6AI score0.00621EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in Chromium

Insufficient policy enforcement in the Extensions API in Google Chrome prior to 116.0.5845.96 allowed an attacker who convinced a user to install a malicious extension to bypass an enterprise policy through a crafted HTML page. Chromium security severity: Medium...

6.5CVSS6.6AI score0.00617EPSS
Exploits0References2
Ivanti
Ivanti
added 2026/06/05 4:45 p.m.9 views

Epmm + Sentry Not Affected by Cve-2026-4408 or Cve-2026-4480

Last Modified Date Jun 5, 2026 4:45:08 PM...

9.8CVSS5.7AI score0.12797EPSS
Exploits7
ATTACKERKB
ATTACKERKB
added 2026/04/08 9:20 p.m.2 views

CVE-2026-5901

Insufficient policy enforcement in DevTools in Google Chrome prior to 147.0.7727.55 allowed an attacker who convinced a user to install a malicious extension to bypass enterprise host restrictions for cookie modification via a crafted Chrome Extension. Chromium security severity: Low...

5.9AI score0.00139EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2023/11/15 12:15 a.m.4 views

CVE-2023-39335

A security vulnerability has been identified in EPMM Versions 11.10, 11.9 and 11.8 and older allowing an unauthenticated threat actor to impersonate any existing user during the device enrollment process. This issue poses a significant security risk, as it enables unauthorized access and potentia...

9.8CVSS5.7AI score0.02278EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.24 views

Fedora 39 : chromium (2023-0b39dc9302)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-0b39dc9302 advisory. update to 118.0.5993.117. Security release for CVE-2023-5472 ---- Update to 118.0.5993.88 ---- Update to 118.0.5993.70. Include following security...

8.8CVSS7.4AI score0.01738EPSS
Exploits0References17
Veracode
Veracode
added 2023/10/19 3:42 a.m.27 views

Improper Authorization

chromium is vulnerable to Improper Authorization. The vulnerability allows an attacker who convinced a user to install a malicious extension to bypass an enterprise policy via a crafted HTML page...

6.5CVSS6.6AI score0.00621EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2023/10/11 11:15 p.m.21 views

CVE-2023-5479

Inappropriate implementation in Extensions API in Google Chrome prior to 118.0.5993.70 allowed an attacker who convinced a user to install a malicious extension to bypass an enterprise policy via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS6.5AI score0.00621EPSS
Exploits0References6
OSV
OSV
added 2023/10/11 11:15 p.m.1 views

DEBIAN-CVE-2023-5479

Inappropriate implementation in Extensions API in Google Chrome prior to 118.0.5993.70 allowed an attacker who convinced a user to install a malicious extension to bypass an enterprise policy via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS6.2AI score0.00621EPSS
Exploits0References1
OSV
OSV
added 2023/10/11 11:15 p.m.32 views

CVE-2023-5479

Inappropriate implementation in Extensions API in Google Chrome prior to 118.0.5993.70 allowed an attacker who convinced a user to install a malicious extension to bypass an enterprise policy via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.2AI score
Exploits0References6
Prion
Prion
added 2023/10/11 11:15 p.m.21 views

Code injection

Inappropriate implementation in Extensions API in Google Chrome prior to 118.0.5993.70 allowed an attacker who convinced a user to install a malicious extension to bypass an enterprise policy via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS6.5AI score0.00621EPSS
Exploits0References6Affected Software2
Cvelist
Cvelist
added 2023/10/11 10:28 p.m.36 views

CVE-2023-5479

Inappropriate implementation in Extensions API in Google Chrome prior to 118.0.5993.70 allowed an attacker who convinced a user to install a malicious extension to bypass an enterprise policy via a crafted HTML page. Chromium security severity: Medium...

6.8AI score0.00621EPSS
Exploits0References6
CVE
CVE
added 2023/10/11 10:28 p.m.309 views

CVE-2023-5479

CVE-2023-5479 corresponds to an insufficiently secure Extensions API in Google Chrome/Chromium before 118.0.5993.70, enabling a user-assisted bypass of enterprise policy via a crafted HTML page if a malicious extension is installed. Public details across connected documents confirm the affected c...

6.5CVSS6.4AI score0.00621EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVE
added 2023/10/11 10:28 p.m.25 views

CVE-2023-5479

Inappropriate implementation in Extensions API in Google Chrome prior to 118.0.5993.70 allowed an attacker who convinced a user to install a malicious extension to bypass an enterprise policy via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS6.8AI score0.00621EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/10/11 1:47 a.m.7 views

SUSE CVE-2023-5479

Inappropriate implementation in Extensions API in Google Chrome prior to 118.0.5993.70 allowed an attacker who convinced a user to install a malicious extension to bypass an enterprise policy via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS8.5AI score0.00621EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2023/10/11 12:0 a.m.35 views

CVE-2023-5479

Inappropriate implementation in Extensions API in Google Chrome prior to 118.0.5993.70 allowed an attacker who convinced a user to install a malicious extension to bypass an enterprise policy via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS6.6AI score0.00621EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/10/10 12:0 a.m.7 views

PT-2023-6119 · Microsoft +5 · Edge +5

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 118.0.5993.70 Microsoft Edge affected versions not specified Description: The issue is related to an inappropriate implementation in the Extensions API, allowing an attacker to bypass an enterprise policy via a...

9.8CVSS6.5AI score0.99739EPSS
Exploits128References1116
Rows per page
Query Builder