Lucene search
K

9185 matches found

NVD
NVD
added 2023/03/07 10:15 p.m.16 views

CVE-2023-1231

Inappropriate implementation in Autofill in Google Chrome on Android prior to 111.0.5563.64 allowed a remote attacker to potentially spoof the contents of the omnibox via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS3.8AI score0.00491EPSS
Exploits0References2
Prion
Prion
added 2023/03/07 10:15 p.m.20 views

Design/Logic Flaw

Inappropriate implementation in Autofill in Google Chrome on Android prior to 111.0.5563.64 allowed a remote attacker to potentially spoof the contents of the omnibox via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS4.8AI score0.00491EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/03/07 10:15 p.m.17 views

Information disclosure

Inappropriate implementation in Internals in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to spoof the origin of an iframe via a crafted HTML page. Chromium security severity: Low...

4.3CVSS4.8AI score0.00459EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2023/03/07 10:15 p.m.38 views

CVE-2023-1229

Inappropriate implementation in Permission prompts in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS6.8AI score0.01163EPSS
Exploits0References4
Prion
Prion
added 2023/03/07 10:15 p.m.34 views

Design/Logic Flaw

Inappropriate implementation in Permission prompts in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS4.8AI score0.01163EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2023/03/07 10:15 p.m.35 views

CVE-2023-1230

Inappropriate implementation in WebApp Installs in Google Chrome on Android prior to 111.0.5563.64 allowed an attacker who convinced a user to install a malicious WebApp to spoof the contents of the PWA installer via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS6.8AI score0.00266EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/03/07 9:42 p.m.21 views

CVE-2023-1234

Inappropriate implementation in Intents in Google Chrome on Android prior to 111.0.5563.64 allowed a remote attacker to perform domain spoofing via a crafted HTML page. Chromium security severity: Low...

5.4AI score0.00707EPSS
Exploits7References2
Vulnrichment
Vulnrichment
added 2023/03/07 9:42 p.m.16 views

CVE-2023-1234

Inappropriate implementation in Intents in Google Chrome on Android prior to 111.0.5563.64 allowed a remote attacker to perform domain spoofing via a crafted HTML page. Chromium security severity: Low...

5.9AI score0.00707EPSS
Exploits7References2
CVE
CVE
added 2023/03/07 9:42 p.m.278 views

CVE-2023-1236

CVE-2023-1236 affects Google Chrome (Chromium-based) prior to 111.0.5563.64 via an inappropriate implementation in Internals that allowed remote spoofing of an iframe origin through a crafted HTML page. The issue is logged as a Low severity in Chromium terms (CVSS 3.1 base 4.3, MEDIUM overall). R...

4.3CVSS4.8AI score0.00459EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/03/07 9:42 p.m.24 views

CVE-2023-1236

Inappropriate implementation in Internals in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to spoof the origin of an iframe via a crafted HTML page. Chromium security severity: Low...

5.4AI score0.00459EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/03/07 9:42 p.m.24 views

CVE-2023-1231

Inappropriate implementation in Autofill in Google Chrome on Android prior to 111.0.5563.64 allowed a remote attacker to potentially spoof the contents of the omnibox via a crafted HTML page. Chromium security severity: Medium...

5.2AI score0.00491EPSS
Exploits0References2
CVE
CVE
added 2023/03/07 9:42 p.m.248 views

CVE-2023-1230

CVE-2023-1230 concerns an Inappropriate implementation in WebApp Installs in Google Chrome on Android before version 111.0.5563.64. The issue allows an attacker who persuades a user to install a malicious WebApp to spoof the contents of the PWA installer via a crafted HTML page. Affected product ...

4.3CVSS4.8AI score0.00266EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/03/07 9:42 p.m.19 views

CVE-2023-1230

Inappropriate implementation in WebApp Installs in Google Chrome on Android prior to 111.0.5563.64 allowed an attacker who convinced a user to install a malicious WebApp to spoof the contents of the PWA installer via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00266EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/03/07 9:42 p.m.18 views

CVE-2023-1231

Inappropriate implementation in Autofill in Google Chrome on Android prior to 111.0.5563.64 allowed a remote attacker to potentially spoof the contents of the omnibox via a crafted HTML page. Chromium security severity: Medium...

5.7AI score0.00491EPSS
Exploits0References2
CVE
CVE
added 2023/03/07 9:42 p.m.263 views

CVE-2023-1229

The CVE-2023-1229 entry concerns Google Chrome (Chromium-based) prior to version 111.0.5563.64. Affected component: Permission prompts implementation. Root cause: Inappropriate implementation in Permission prompts allowed a remote attacker to bypass navigation restrictions via a crafted HTML page...

4.3CVSS4.9AI score0.01163EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/03/07 9:42 p.m.23 views

CVE-2023-1229

Inappropriate implementation in Permission prompts in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

5.9AI score0.01163EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2023/03/07 7:35 p.m.62 views

USN-5935-1: Linux kernel vulnerabilities

It was discovered that the Upper Level Protocol ULP subsystem in the Linux kernel did not properly handle sockets entering the LISTEN state in certain protocols, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execut...

7.8CVSS7.3AI score0.06346EPSS
Exploits8
Ubuntu
Ubuntu
added 2023/03/07 7:29 p.m.75 views

USN-5934-1: Linux kernel (Raspberry Pi) vulnerabilities

It was discovered that the Upper Level Protocol ULP subsystem in the Linux kernel did not properly handle sockets entering the LISTEN state in certain protocols, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execut...

8.1CVSS7.7AI score0.03702EPSS
Exploits6
Hacker One
Hacker One
added 2023/03/07 3:11 p.m.157 views

Internet Bug Bounty: Apache Airflow Google Cloud Sql Provider Remote Command Execution

An improper input validation vulnerability was discovered in Apache Airflow Google Provider before version 8.10.0, which could allow an attacker to execute remote commands on the victim's machine by modifying the existing connection configuration information. The vulnerability was discovered by X...

7.6AI score
Exploits0
Ubuntu
Ubuntu
added 2023/03/07 12:4 p.m.58 views

LSN-0092-1: Kernel Live Patch Security Notice

Kyle Zeng discovered that the sysctl implementation in the Linux kernel contained a stack-based buffer overflow. A local attacker could use this to cause a denial of service system crash or execute arbitrary code.CVE-2022-4378 Tamás Koczka discovered that the Bluetooth L2CAP handshake...

8.8CVSS7.7AI score0.21314EPSS
Exploits0
Rows per page
Query Builder