Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-2250

Malware in sbrugna...

5.8CVSS6.4AI score0.0088EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 11:17 a.m.9 views

CVE-2013-2304

The Sleipnir Mobile application 2.8.0 and earlier and Sleipnir Mobile Black Edition application 2.8.0 and earlier for Android allow remote attackers to load arbitrary Extension APIs, and trigger downloads or obtain sensitive HTTP response-body information, via a crafted web page...

5.8CVSS7.1AI score0.0088EPSS
Exploits0References1
Veracode
Veracode
added 2022/05/30 5:44 a.m.17 views

Privilege Escalation

chromium is vulnerable to privilege escalation. The vulnerability exists through the extension APIs allowing an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted HTML page...

6.5CVSS7.4AI score0.00493EPSS
Exploits0References5Affected Software2
Veracode
Veracode
added 2022/05/30 5:32 a.m.30 views

Remote Code Execution (RCE)

chromium is vulnerable to remote code execution. An attacker can inject and execute malicious code through the extension APIs allowing an attacker who convinced a user to install a malicious extension to bypass downloads policy via a crafted HTML page...

4.3CVSS7.3AI score0.00472EPSS
Exploits0References5Affected Software2
OSV
OSV
added 2020/07/31 12:4 p.m.9 views

SUSE-SU-2020:2100-1 Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.1.0 ESR Fixed: Various stability, functionality, and security fixes bsc1174538 CVE-2020-15652: Potential leak of redirect targets when loading scripts in a worker CVE-2020-6514: WebRTC data channel...

9.3CVSS8.3AI score0.0779EPSS
Exploits6References13
Prion
Prion
added 2015/07/03 2:0 a.m.14 views

Design/Logic Flaw

The kernel in Apple OS X before 10.10.4 does not properly manage memory in kernel-extension APIs, which allows attackers to obtain sensitive memory-layout information via a crafted app...

4.3CVSS5.5AI score0.01276EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2015/07/03 1:0 a.m.18 views

CVE-2015-3720

The kernel in Apple OS X before 10.10.4 does not properly manage memory in kernel-extension APIs, which allows attackers to obtain sensitive memory-layout information via a crafted app...

3.3AI score0.01276EPSS
Exploits0References3
Prion
Prion
added 2015/01/30 11:59 a.m.25 views

Design/Logic Flaw

The extension APIs in the kernel in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 do not prevent the presence of addresses within an OSBundleMachOHeaders key in a response, which makes it easier for attackers to bypass the ASLR protection mechanism via a crafted app...

5CVSS6AI score0.01703EPSS
Exploits0References7Affected Software3
NVD
NVD
added 2013/04/16 2:4 p.m.18 views

CVE-2013-2304

The Sleipnir Mobile application 2.8.0 and earlier and Sleipnir Mobile Black Edition application 2.8.0 and earlier for Android allow remote attackers to load arbitrary Extension APIs, and trigger downloads or obtain sensitive HTTP response-body information, via a crafted web page...

5.8CVSS6.7AI score0.0088EPSS
Exploits0References2
Rows per page
Query Builder