Lucene search
K

116 matches found

Debian CVE
Debian CVE
added 2024/08/06 3:37 p.m.29 views

CVE-2024-7003

Inappropriate implementation in FedCM in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS6AI score0.00442EPSS
Exploits0
CVE
CVE
added 2024/08/06 3:37 p.m.86 views

CVE-2024-7003

CVE-2024-7003 affects Google Chrome/Chromium FedCM: an inappropriate FedCM implementation allowed UI spoofing via a crafted HTML page after a user gesture. The issue is limited to the FedCM UI flow and requires user interaction. Remediation: upgrade to Chromium/Chrome version 127.0.6533.72 or lat...

4.3CVSS6.4AI score0.00442EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/08/06 3:37 p.m.28 views

CVE-2024-7003

Inappropriate implementation in FedCM in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

0.00442EPSS
Exploits0References2
CVE
CVE
added 2024/08/06 3:37 p.m.86 views

CVE-2024-6999

Affected software: Google Chrome (FedCM implementation). Summary: The vulnerability arises from an inappropriate FedCM implementation in Chrome prior to 127.6533.72, enabling a remote attacker to cause UI spoofing by convincing a user to perform specific UI gestures on a crafted HTML page. Impact...

4.3CVSS6.4AI score0.00418EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/08/06 3:37 p.m.19 views

CVE-2024-6999

Inappropriate implementation in FedCM in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

6.4AI score0.00418EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2024/08/06 3:37 p.m.16 views

CVE-2024-6999

Inappropriate implementation in FedCM in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS6AI score0.00418EPSS
Exploits0
Cvelist
Cvelist
added 2024/08/06 3:37 p.m.28 views

CVE-2024-6999

Inappropriate implementation in FedCM in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

0.00418EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2024/08/06 3:37 p.m.21 views

CVE-2024-6999

Inappropriate implementation in FedCM in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS6.1AI score0.00418EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/07/25 6:30 p.m.18 views

Chromium: CVE-2024-7003 Inappropriate implementation in FedCM

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS6AI score0.00442EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/07/25 6:30 p.m.20 views

Chromium: CVE-2024-6999 Inappropriate implementation in FedCM

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS6AI score0.00418EPSS
Exploits0
CNVD
CNVD
added 2024/07/25 12:0 a.m.10 views

Google Chrome Security Bypass Vulnerability (CNVD-2024-33606)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a security bypass vulnerability that stems from an improper implementation of FedCM. An attacker can exploit the vulnerability to bypass security restrictions...

4.3CVSS6.3AI score0.00418EPSS
Exploits0References1
Kaspersky
Kaspersky
added 2024/07/25 12:0 a.m.26 views

KLA71043 Multiple vulnerabilities in Microsoft Browser

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code, spoof user interface, obtain sensitive information. Below is a complete list of vulnerabilities: 1...

8.8CVSS9.2AI score0.00538EPSS
Exploits0References18
OpenVAS
OpenVAS
added 2024/07/24 12:0 a.m.24 views

Google Chrome Security Update (stable-channel-update-for-desktop_23-2024-07) - Windows

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

8.8CVSS8.8AI score0.00538EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2024/07/24 12:0 a.m.17 views

Google Chrome Security Update (stable-channel-update-for-desktop_23-2024-07) - Linux

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

8.8CVSS8.8AI score0.00538EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/07/23 12:0 a.m.5 views

PT-2024-5300 · Google +4 · Google Chrome +4

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 127.0.6533.72 Microsoft Edge affected versions not specified Description: The issue is related to inappropriate implementation in the FedCM component, which is associated with inadequate access control. This...

8.8CVSS6.2AI score0.00916EPSS
Exploits1References122
Tenable Nessus
Tenable Nessus
added 2024/07/23 12:0 a.m.44 views

Google Chrome < 127.0.6533.72 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 127.0.6533.72. It is, therefore, affected by multiple vulnerabilities as referenced in the 202407stable-channel-update-for-desktop23 advisory. - Use after free in CSS in Google Chrome prior to 127.0.6533.72 allowed a...

8.8CVSS6.7AI score0.00538EPSS
Exploits0References29
OpenVAS
OpenVAS
added 2024/04/02 12:0 a.m.23 views

Google Chrome Security Update(stable-channel-update-for-desktop-2024-03) - Linux

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

8.8CVSS8.7AI score0.13556EPSS
Exploits3References1
Microsoft CVE
Microsoft CVE
added 2024/03/07 6:54 p.m.41 views

Chromium: CVE-2024-2176 Use after free in FedCM

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS7.3AI score0.01251EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/03/07 12:0 a.m.27 views

FreeBSD : chromium -- multiple security fixes (fd3401a1-b6df-4577-917a-2c22fee99d34)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the fd3401a1-b6df-4577-917a-2c22fee99d34 advisory. - Out of bounds memory access in V8 in Google Chrome prior to 122.0.6261.111 allowed a remote...

8.8CVSS8.2AI score0.13556EPSS
Exploits3References5
NVD
NVD
added 2024/03/06 7:15 p.m.21 views

CVE-2024-2176

Use after free in FedCM in Google Chrome prior to 122.0.6261.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS4.7AI score0.01251EPSS
Exploits1References3
Rows per page
Query Builder