Lucene search
K

9179 matches found

NVD
NVD
added 2023/05/03 12:15 a.m.20 views

CVE-2023-2463

Inappropriate implementation in Full Screen Mode in Google Chrome on Android prior to 113.0.5672.63 allowed a remote attacker to hide the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS4.6AI score0.00859EPSS
Exploits0References7
NVD
NVD
added 2023/05/03 12:15 a.m.19 views

CVE-2023-2462

Inappropriate implementation in Prompts in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to obfuscate main origin data via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS4.8AI score0.00801EPSS
Exploits0References7
OSV
OSV
added 2023/05/03 12:15 a.m.24 views

CVE-2023-2462

Inappropriate implementation in Prompts in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to obfuscate main origin data via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5.2AI score
Exploits0References7
OSV
OSV
added 2023/05/03 12:15 a.m.18 views

CVE-2023-2464

Inappropriate implementation in PictureInPicture in Google Chrome prior to 113.0.5672.63 allowed an attacker who convinced a user to install a malicious extension to perform an origin spoof in the security UI via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5.2AI score
Exploits0References7
OSV
OSV
added 2023/05/03 12:15 a.m.24 views

CVE-2023-2463

Inappropriate implementation in Full Screen Mode in Google Chrome on Android prior to 113.0.5672.63 allowed a remote attacker to hide the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5AI score
Exploits0References7
OSV
OSV
added 2023/05/03 12:15 a.m.17 views

CVE-2023-2465

Inappropriate implementation in CORS in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5.1AI score
Exploits0References7
OSV
OSV
added 2023/05/03 12:15 a.m.26 views

CVE-2023-2468

Inappropriate implementation in PictureInPicture in Google Chrome prior to 113.0.5672.63 allowed a remote attacker who had compromised the renderer process to obfuscate the security UI via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.2AI score
Exploits0References7
NVD
NVD
added 2023/05/03 12:15 a.m.15 views

CVE-2023-2459

Inappropriate implementation in Prompts in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to bypass permission restrictions via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS6.1AI score0.00968EPSS
Exploits0References7
OSV
OSV
added 2023/05/03 12:15 a.m.18 views

CVE-2023-2459

Inappropriate implementation in Prompts in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to bypass permission restrictions via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.2AI score
Exploits0References7
Prion
Prion
added 2023/05/03 12:15 a.m.32 views

Design/Logic Flaw

Inappropriate implementation in Prompts in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to spoof the contents of the security UI via a crafted HTML page. Chromium security severity: Low...

4.3CVSS4.6AI score0.00801EPSS
Exploits0References7Affected Software3
Prion
Prion
added 2023/05/03 12:15 a.m.29 views

Design/Logic Flaw

Inappropriate implementation in Prompts in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to obfuscate main origin data via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS4.8AI score0.00801EPSS
Exploits0References7Affected Software3
UbuntuCve
UbuntuCve
added 2023/05/03 12:15 a.m.29 views

CVE-2023-2462

Inappropriate implementation in Prompts in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to obfuscate main origin data via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS6.3AI score0.00801EPSS
Exploits0References5
Prion
Prion
added 2023/05/03 12:15 a.m.28 views

Design/Logic Flaw

Inappropriate implementation in PictureInPicture in Google Chrome prior to 113.0.5672.63 allowed an attacker who convinced a user to install a malicious extension to perform an origin spoof in the security UI via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS4.9AI score0.00645EPSS
Exploits0References7Affected Software3
UbuntuCve
UbuntuCve
added 2023/05/03 12:15 a.m.28 views

CVE-2023-2468

Inappropriate implementation in PictureInPicture in Google Chrome prior to 113.0.5672.63 allowed a remote attacker who had compromised the renderer process to obfuscate the security UI via a crafted HTML page. Chromium security severity: Low...

4.3CVSS6.3AI score0.00801EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2023/05/03 12:15 a.m.32 views

CVE-2023-2467

Inappropriate implementation in Prompts in Google Chrome on Android prior to 113.0.5672.63 allowed a remote attacker to bypass permissions restrictions via a crafted HTML page. Chromium security severity: Low...

4.3CVSS6.8AI score0.00819EPSS
Exploits0References5
Prion
Prion
added 2023/05/03 12:15 a.m.23 views

Design/Logic Flaw

Inappropriate implementation in Full Screen Mode in Google Chrome on Android prior to 113.0.5672.63 allowed a remote attacker to hide the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS4.8AI score0.00859EPSS
Exploits0References7Affected Software3
Prion
Prion
added 2023/05/03 12:15 a.m.30 views

Design/Logic Flaw

Inappropriate implementation in PictureInPicture in Google Chrome prior to 113.0.5672.63 allowed a remote attacker who had compromised the renderer process to obfuscate the security UI via a crafted HTML page. Chromium security severity: Low...

4.3CVSS4.8AI score0.00801EPSS
Exploits0References7Affected Software3
Tenable Nessus
Tenable Nessus
added 2023/05/03 12:0 a.m.37 views

FreeBSD : chromium -- multiple vulnerabilities (246174d3-e979-11ed-8290-a8a1599412c6)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 246174d3-e979-11ed-8290-a8a1599412c6 advisory. - Inappropriate implementation in Prompts in Google Chrome prior to 113.0.5672.63 allowed a...

8.8CVSS7.2AI score0.00968EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2023/05/03 12:0 a.m.8 views

PT-2023-16947 · Amazon +1 · Fire Os +2

Name of the Vulnerable Software and Affected Versions: Amazon Fire TV Stick 3rd gen versions prior to 6.2.9.5 Insignia TV with FireOS version 7.6.3.3 Description: The issue is related to an improper JPAKE implementation, which allows offline PIN brute-forcing due to the initialization of random...

8.8CVSS8.6AI score0.00332EPSS
Exploits0References4
FreeBSD
FreeBSD
added 2023/05/03 12:0 a.m.40 views

chromium -- multiple vulnerabilities

Chrome Releases reports: This update includes 15 security fixes: 1423304 Medium CVE-2023-2459: Inappropriate implementation in Prompts. Reported by Rong Jian of VRI on 2023-03-10 1419732 Medium CVE-2023-2460: Insufficient validation of untrusted input in Extensions. Reported by Martin Bajanik,...

8.8CVSS7.4AI score0.00968EPSS
Exploits0References1
Rows per page
Query Builder