Lucene search
+L

390 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2020-16032

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient data validation in sharing in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a...

4.3CVSS6.7AI score0.00656EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2020-16015

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient data validation in WASM in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML...

8.8CVSS7AI score0.0099EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.5 views

Astra Linux – Vulnerability in Chromium

Insufficient data validation in Extensions in Google Chrome prior to 132.0.6834.83 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform privilege escalation via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS7.7AI score0.00445EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/01/21 12:0 a.m.17 views

openSUSE 15 Security Update : chromium (openSUSE-SU-2025:0018-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2025:0018-1 advisory. - Chromium 132.0.6834.83 stable released 2024-01-14 boo1235892 CVE-2025-0434: Out of bounds memory access in V8 CVE-2025-0435: Inappropriate...

8.8CVSS7AI score0.05945EPSS
Exploits11References28
OSV
OSV
added 2025/01/20 9:59 a.m.12 views

OPENSUSE-SU-2025:0018-1 Security update for chromium

This update for chromium fixes the following issues: - Chromium 132.0.6834.83 stable released 2024-01-14 boo1235892 CVE-2025-0434: Out of bounds memory access in V8 CVE-2025-0435: Inappropriate implementation in Navigation CVE-2025-0436: Integer overflow in Skia CVE-2025-0437: Out of bounds read ...

8.8CVSS9.1AI score0.05945EPSS
Exploits11References15
CNVD
CNVD
added 2025/01/17 12:0 a.m.8 views

Google Chrome Security Bypass Vulnerability (CNVD-2025-06042)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a security bypass vulnerability that is caused due to insufficient data validation in extensions. An attacker can exploit this vulnerability to bypass security restrictions...

8.8CVSS6.8AI score0.00445EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/01/15 10:58 a.m.19 views

CVE-2025-0443

Insufficient data validation in Extensions in Google Chrome prior to 132.0.6834.83 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform privilege escalation via a crafted HTML page. Chromium security severity: Medium...

0.00445EPSS
Exploits1References2
AlpineLinux
AlpineLinux
added 2025/01/15 10:58 a.m.22 views

CVE-2025-0443

Insufficient data validation in Extensions in Google Chrome prior to 132.0.6834.83 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform privilege escalation via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6.4AI score0.00445EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.13 views

PT-2025-1284 · Microsoft +5 · Edge +5

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 132.0.6834.83 Microsoft Edge affected versions not specified Description: The issue exists due to insufficient data validation in the Extensions component of Google Chrome and Microsoft Edge, allowing a remote...

10CVSS6.7AI score0.19272EPSS
Exploits27References265
OpenVAS
OpenVAS
added 2024/11/28 12:0 a.m.6 views

Google Chrome Insufficient Data Validation Vulnerability - Windows

Google Chrome is prone to an insufficient data validation vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

8.8CVSS8.7AI score0.0035EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/11/27 5:50 p.m.23 views

CVE-2024-9369

Insufficient data validation in Mojo in Google Chrome prior to 129.0.6668.89 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: High...

0.00585EPSS
Exploits0References2
CVE
CVE
added 2024/11/27 5:50 p.m.154 views

CVE-2024-9369

CVE-2024-9369: Insufficient data validation in Mojo within Google Chrome (Chromium) allowed a remote attacker, who had compromised the renderer process, to perform an out-of-bounds memory write via a crafted HTML page. The issue is confirmed in Chrome/Chromium and has high impact. Public fix/upda...

9.6CVSS6.1AI score0.00585EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/11/27 5:50 p.m.30 views

CVE-2024-9369

Insufficient data validation in Mojo in Google Chrome prior to 129.0.6668.89 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: High...

6.6AI score0.00585EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/11/21 12:0 a.m.11 views

IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DXF files...

7.8CVSS6.9AI score0.00403EPSS
Exploits0
OSV
OSV
added 2024/10/29 4:11 p.m.14 views

MGASA-2024-0341 Updated chromium-browser-stable packages fix security vulnerabilities

Integer overflow in Layout. CVE-2024-7025 Insufficient data validation in Mojo. CVE-2024-9369 Inappropriate implementation in V8. CVE-2024-9370 Type Confusion in V8. CVE-2024-9602 Type Confusion in V8. CVE-2024-9603...

9.6CVSS9.2AI score0.00768EPSS
Exploits2References4
Mageia
Mageia
added 2024/10/29 4:11 p.m.45 views

Updated chromium-browser-stable packages fix security vulnerabilities

Integer overflow in Layout. CVE-2024-7025 Insufficient data validation in Mojo. CVE-2024-9369 Inappropriate implementation in V8. CVE-2024-9370 Type Confusion in V8. CVE-2024-9602 Type Confusion in V8. CVE-2024-9603...

9.6CVSS7.2AI score0.00768EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2024/10/21 12:0 a.m.15 views

Fedora: Security Advisory (FEDORA-2024-4d80983af6)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.9AI score0.06295EPSS
Exploits3References16
Tenable Nessus
Tenable Nessus
added 2024/10/19 12:0 a.m.25 views

Fedora 39 : chromium (2024-c0b1d26de3)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-c0b1d26de3 advisory. Update to 130.0.6723.58 High CVE-2024-9954: Use after free in AI Medium CVE-2024-9955: Use after free in Web Authentication Medium CVE-2024-9956:...

8.8CVSS6.5AI score0.06295EPSS
Exploits3References14
Tenable Nessus
Tenable Nessus
added 2024/10/19 12:0 a.m.21 views

openSUSE 15 Security Update : chromium (openSUSE-SU-2024:0337-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0337-1 advisory. Chromium 130.0.6723.58 boo1231694 CVE-2024-9954: Use after free in AI CVE-2024-9955: Use after free in Web Authentication CVE-2024-9956:...

8.8CVSS6.5AI score0.06295EPSS
Exploits3References28
OpenVAS
OpenVAS
added 2024/10/19 12:0 a.m.19 views

openSUSE Security Advisory (openSUSE-SU-2024:0337-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.3AI score0.06295EPSS
Exploits3References3
Rows per page
Query Builder