Lucene search
+L

116 matches found

nessus
nessus
added 2023/12/14 12:0 a.m.59 views

Google Chrome < 120.0.6099.109 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 120.0.6099.109. It is, therefore, affected by multiple vulnerabilities as referenced in the 202312stable-channel-update-for-desktop12 advisory. - Use after free in CSS in Google Chrome prior to 120.0.6099.109 allowed a...

8.8CVSS8.3AI score0.4351EPSS
Exploits1References13
nessus
nessus
added 2023/12/14 12:0 a.m.32 views

Fedora 39 : chromium (2023-1fe02ca797)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-1fe02ca797 advisory. update to 120.0.6099.109 - High CVE-2023-6702: Type Confusion in V8 - High CVE-2023-6703: Use after free in Blink - High CVE-2023-6704: Use after fr...

8.8CVSS8.3AI score0.4351EPSS
Exploits1References7
nessus
nessus
added 2023/12/13 12:0 a.m.136 views

FreeBSD : chromium -- multiple security fixes (502c9f72-99b3-11ee-86bb-a8a1599412c6)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 502c9f72-99b3-11ee-86bb-a8a1599412c6 advisory. - Type Confusion in V8. CVE-2023-6702 - Use after free in Blink. CVE-2023-6703 - Use after fre...

8.8CVSS8.2AI score0.4351EPSS
Exploits1References8
nessus
nessus
added 2023/12/12 12:0 a.m.84 views

Google Chrome < 120.0.6099.109 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 120.0.6099.109. It is, therefore, affected by multiple vulnerabilities as referenced in the 202312stable-channel-update-for-desktop12 advisory. - Use after free in CSS in Google Chrome prior to 120.0.6099.109 allowed a...

8.8CVSS8.3AI score0.4351EPSS
Exploits1References13
freebsd
freebsd
added 2023/12/12 12:0 a.m.41 views

chromium -- multiple security fixes

Chrome Releases reports: This update includes 9 security fixes: 1501326 High CVE-2023-6702: Type Confusion in V8. Reported by Zhiyi Zhang and Zhunki from Codesafe Team of Legendsec at Qi'anxin Group on 2023-11-10 1502102 High CVE-2023-6703: Use after free in Blink. Reported by Cassidy...

8.8CVSS7.7AI score0.4351EPSS
Exploits1References1
ptsecurity
ptsecurity
added 2023/11/09 12:0 a.m.6 views

PT-2023-7684 · Google +4 · Google Chrome +4

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 120.0.6099.109 Description: The issue is related to a use after free in the FedCM component of Google Chrome, which could allow a remote attacker to potentially exploit heap corruption via a crafted HTML page...

10CVSS8.1AI score0.99735EPSS
Exploits128References1115
mageia
mageia
added 2023/10/03 10:53 a.m.44 views

Updated chromium-browser-stable package fixes bugs and vulnerabilities

The chromium-browser-stable package has been updated to the 117.0.5938.92 release, fixing bugs and 31 vulnerabilities, together with 117.0.5938.92, 117.0.5938.88, 117.0.5938.62, 116.0.5845.187 and 116.0.5845.179. Google is aware that an exploit for CVE-2023-5217 exists in the wild. High...

8.8CVSS9.7AI score0.99735EPSS
Exploits14References7
veracode
veracode
added 2023/09/12 2:44 a.m.26 views

Denial Of Service (DoS)

Google Chrome is vulnerable to Denial Of Service DoS. The vulnerability exists due to the out of bounds memory access in FedCM, which allows an attacker to perform out of bounds memory read via a maliciously crafted HTML page through the renderer process...

8.1CVSS6.5AI score0.01287EPSS
Exploits0References10Affected Software1
nvd
nvd
added 2023/09/05 10:15 p.m.18 views

CVE-2023-4761

Out of bounds memory access in FedCM in Google Chrome prior to 116.0.5845.179 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: High...

8.1CVSS7.7AI score0.01287EPSS
Exploits0References9
cve
cve
added 2023/09/05 9:57 p.m.482 views

CVE-2023-4761

CVE-2023-4761 is a memory‑safety issue in FedCM within Google Chrome/Chromium prior to 116.0.5845.179, allowing a renderer‑compromised attacker to perform an out‑of‑bounds memory read via a crafted page (severity HIGH). Connected sources confirm affected products include Chromium/Chrome; Debian a...

8.1CVSS7.6AI score0.01287EPSS
Exploits0References9Affected Software1
debiancve
debiancve
added 2023/09/05 9:57 p.m.24 views

CVE-2023-4761

Out of bounds memory access in FedCM in Google Chrome prior to 116.0.5845.179 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: High...

8.1CVSS8.5AI score0.01287EPSS
Exploits0
nessus
nessus
added 2023/09/05 12:0 a.m.37 views

Google Chrome < 116.0.5845.179 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 116.0.5845.179. It is, therefore, affected by multiple vulnerabilities as referenced in the 202309stable-channel-update-for-desktop advisory. - Use after free in Networks in Google Chrome prior to 116.0.5845.179 allowed...

8.8CVSS8.5AI score0.37987EPSS
Exploits2References9
veracode
veracode
added 2023/04/19 7:5 a.m.17 views

Authentication Bypass

Google Chrome is vulnerable to Authentication Bypass. The vulnerability exists due to the inappropriate implementation in FedCM, which allows an attacker to bypass navigation restrictions via a crafted HTML page...

6.5CVSS6.9AI score0.00889EPSS
Exploits0References7Affected Software1
ubuntu
ubuntu
added 2023/04/14 12:38 p.m.69 views

USN-6021-1: Chromium vulnerabilities

It was discovered that Chromium did not properly manage memory in several components. A remote attacker could possibly use this issue to corrupt memory via a crafted HTML page, resulting in a denial of service, or possibly execute arbitrary code. CVE-2023-1528, CVE-2023-1530, CVE-2023-1531,...

9.8CVSS8AI score0.02925EPSS
Exploits0
cnvd
cnvd
added 2023/04/07 12:0 a.m.22 views

Google Chrome FedCM Security Bypass Vulnerability

Google Chrome is a web browser from Google, an American company. A security bypass vulnerability exists in Google Chrome FedCM, which stems from an improper implementation in FedCM. An attacker can exploit this vulnerability to bypass security restrictions...

6.5CVSS6.6AI score0.00889EPSS
Exploits0References1
mscve
mscve
added 2023/04/06 7:0 a.m.20 views

Chromium: CVE-2023-1823 Inappropriate implementation in FedCM

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS7.2AI score0.00889EPSS
Exploits0
susecve
susecve
added 2023/04/05 1:49 a.m.8 views

SUSE CVE-2023-1823

Inappropriate implementation in FedCM in Google Chrome prior to 112.0.5615.49 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

6.5CVSS8.5AI score0.00889EPSS
Exploits0References4
freebsd
freebsd
added 2023/04/05 12:0 a.m.44 views

chromium -- multiple vulnerabilities

Chrome Releases reports: This update includes 16 security fixes: 1414018 High CVE-2023-1810: Heap buffer overflow in Visuals. Reported by Weipeng Jiang @Krace of VRI on 2023-02-08 1420510 High CVE-2023-1811: Use after free in Frames. Reported by Thomas Orlita on 2023-03-01 1418224 Medium...

8.8CVSS8.6AI score0.01077EPSS
Exploits0References1
nvd
nvd
added 2023/04/04 10:15 p.m.17 views

CVE-2023-1823

Inappropriate implementation in FedCM in Google Chrome prior to 112.0.5615.49 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

6.5CVSS5.9AI score0.00889EPSS
Exploits0References6
osv
osv
added 2023/04/04 10:15 p.m.16 views

CVE-2023-1823

Inappropriate implementation in FedCM in Google Chrome prior to 112.0.5615.49 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

6.5CVSS5.2AI score
Exploits0References6
Rows per page
Query Builder