Lucene search
+L

390 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-27720

Malware in sbrugna...

4.3CVSS7.1AI score0.01307EPSS
Exploits1References11
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-35238

Malicious code in bioql PyPI...

9.9CVSS9.1AI score0.01114EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/06/26 12:0 a.m.9 views

Microsoft Edge (Chromium) < 138.0.3351.55 Multiple Vulnerabilities

The version of Microsoft Edge installed on the remote Windows host is prior to 138.0.3351.55. It is, therefore, affected by multiple vulnerabilities as referenced in the June 26, 2025 advisory. - Insufficient data validation in DevTools in Google Chrome on Windows prior to 138.0.7204.49 allowed a...

6.5CVSS6.5AI score0.00509EPSS
Exploits0References13
CVE
CVE
added 2025/06/24 8:3 p.m.317 views

CVE-2025-6557

The CVE-2025-6557 entry concerns Google Chrome on Windows with an insufficient DevTools data validation flaw that could allow arbitrary code execution via a crafted HTML page after user interaction with specific UI gestures. Affected component: DevTools in Chrome; root cause: inadequate input val...

5.4CVSS7.5AI score0.00177EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/06/24 12:0 a.m.5 views

PT-2025-26787 · Google +1 · Google Chrome +1

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 138.0.7204.49 Description: Insufficient data validation in DevTools in Google Chrome on Windows allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a...

6.4CVSS6.6AI score0.00177EPSS
Exploits0References24
OpenVAS
OpenVAS
added 2025/05/26 12:0 a.m.9 views

Fedora: Security Advisory (FEDORA-2025-8fbc37e703)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.8AI score0.0058EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 7:12 a.m.6 views

CVE-2024-7023

Insufficient data validation in Updater in Google Chrome prior to 128.0.6537.0 allowed a remote attacker to perform privilege escalation via a malicious file. Chromium security severity: Medium...

8.8CVSS6.5AI score0.0035EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:23 a.m.5 views

CVE-2024-7977

Insufficient data validation in Installer in Google Chrome on Windows prior to 128.0.6613.84 allowed a local attacker to perform privilege escalation via a malicious file. Chromium security severity: Medium...

7.8CVSS7.2AI score0.00342EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:55 a.m.7 views

CVE-2018-17460

Insufficient data validation in filesystem URIs in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted domain name...

6.5CVSS5.9AI score0.00634EPSS
Exploits0References1
CNVD
CNVD
added 2025/05/14 12:0 a.m.12 views

Google Chrome Security Bypass Vulnerability (CNVD-2025-10056)

Google Chrome is a web browser from Google, an American company. A security bypass vulnerability exists in Google Chrome prior to version 136.0.7103.59, which stems from insufficient data validation in DevTools, and can be exploited by an attacker to cause an access control bypass...

6.3CVSS6.8AI score0.00296EPSS
Exploits0References1
OSV
OSV
added 2025/05/05 6:15 p.m.13 views

CVE-2025-4051

Insufficient data validation in DevTools in Google Chrome prior to 136.0.7103.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass discretionary access control via a crafted HTML page. Chromium security severity: Medium...

6.3CVSS5.8AI score
Exploits0References2
CVE
CVE
added 2025/05/05 6:10 p.m.229 views

CVE-2025-4051

CVE-2025-4051 involves insufficient data validation in DevTools of Google Chrome/Chromium, allowing a remote attacker to bypass discretionary access control when a user is persuaded to perform specific UI gestures on a crafted HTML page. The vulnerability affects Chrome before version 136.0.7103....

6.3CVSS5.9AI score0.00296EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/05 6:10 p.m.7 views

CVE-2025-4051

Insufficient data validation in DevTools in Google Chrome prior to 136.0.7103.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass discretionary access control via a crafted HTML page. Chromium security severity: Medium...

5.7AI score0.00296EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2025/05/05 6:10 p.m.13 views

CVE-2025-4051

Insufficient data validation in DevTools in Google Chrome prior to 136.0.7103.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass discretionary access control via a crafted HTML page. Chromium security severity: Medium...

6.3CVSS7AI score0.00296EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/05/04 12:0 a.m.12 views

Fedora 40 : chromium (2025-b1804b97fc)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-b1804b97fc advisory. Update to 136.0.7103.59 CVE-2025-4096: Heap buffer overflow in HTML CVE-2025-4050: Out of bounds memory access in DevTools CVE-2025-4051: Insufficie...

9.8CVSS7.6AI score0.0058EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2025/05/01 10:16 p.m.42 views

Chromium: CVE-2025-4052 Inappropriate implementation in DevTools

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

9.8CVSS7.5AI score0.0058EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/04/29 12:0 a.m.45 views

Google Chrome < 136.0.7103.48 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 136.0.7103.48. It is, therefore, affected by multiple vulnerabilities as referenced in the 202504stable-channel-update-for-desktop29 advisory. - Inappropriate implementation in DevTools in Google Chrome prior to...

9.8CVSS7.7AI score0.0058EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-7977

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient data validation in Installer in Google Chrome on Windows prior to 128.0.6613.84 allowed a local attacker to perform privilege escalation via a...

7.8CVSS7AI score0.00342EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2025-0443

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient data validation in Extensions in Google Chrome prior to 132.0.6834.83 allowed a remote attacker who convinced a user to engage in specific UI...

8.8CVSS7AI score0.00445EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2020-16030

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient data validation in Blink in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HT...

6.1CVSS6.8AI score0.00652EPSS
Exploits0References2
Rows per page
Query Builder