Lucene search
+L

390 matches found

Microsoft CVE
Microsoft CVE
added 2024/10/17 7:0 a.m.137 views

Chromium: CVE-2024-9963 Insufficient data validation in Downloads

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS6.9AI score0.00268EPSS
Exploits0
Kaspersky
Kaspersky
added 2024/10/17 12:0 a.m.38 views

KLA74117 Multiple vulnerabilities in Microsoft Browser

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, spoof user interface, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Parce...

9.8CVSS9AI score0.06295EPSS
Exploits3References24
NVD
NVD
added 2024/10/15 9:15 p.m.20 views

CVE-2024-9963

Insufficient data validation in Downloads in Google Chrome prior to 130.0.6723.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS0.00268EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/10/15 8:14 p.m.20 views

CVE-2024-9965

Insufficient data validation in DevTools in Google Chrome on Windows prior to 130.0.6723.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. Chromium security severity: Low...

0.00413EPSS
Exploits0References2
CVE
CVE
added 2024/10/15 8:14 p.m.96 views

CVE-2024-9965

CVE-2024-9965 concerns Google Chrome/Chromium DevTools on Windows prior to 130.0.6723.58. The Debian advisory confirms the vulnerability allows remote code execution through a crafted HTML page after certain user UI interactions, due to insufficient data validation in DevTools. Affected user agen...

8.8CVSS7.5AI score0.00413EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/10/15 8:14 p.m.22 views

CVE-2024-9963

Insufficient data validation in Downloads in Google Chrome prior to 130.0.6723.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

6.3AI score0.00268EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2024/10/15 8:14 p.m.27 views

CVE-2024-9965

Insufficient data validation in DevTools in Google Chrome on Windows prior to 130.0.6723.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. Chromium security severity: Low...

8.8CVSS7.6AI score0.00413EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/10/15 12:0 a.m.67 views

Google Chrome < 130.0.6723.59 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 130.0.6723.59. It is, therefore, affected by multiple vulnerabilities as referenced in the 202410stable-channel-update-for-desktop15 advisory. - Use after free in AI. CVE-2024-9954 - Use after free in Web Authentication...

8.8CVSS7.9AI score0.06295EPSS
Exploits3References27
Tenable Nessus
Tenable Nessus
added 2024/10/15 12:0 a.m.30 views

Google Chrome < 130.0.6723.58 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 130.0.6723.58. It is, therefore, affected by multiple vulnerabilities as referenced in the 202410stable-channel-update-for-desktop15 advisory. - Use after free in AI. CVE-2024-9954 - Use after free in Web Authentication...

8.8CVSS6.8AI score0.06295EPSS
Exploits3References27
Tenable Nessus
Tenable Nessus
added 2024/10/15 12:0 a.m.43 views

Google Chrome < 130.0.6723.58 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 130.0.6723.58. It is, therefore, affected by multiple vulnerabilities as referenced in the 202410stable-channel-update-for-desktop15 advisory. - Insufficient data validation in DevTools in Google Chrome on Windows prior t...

8.8CVSS7.2AI score0.06295EPSS
Exploits3References27
FreeBSD
FreeBSD
added 2024/10/15 12:0 a.m.12 views

chromium -- multiple security fixes

Chrome Releases reports: This update includes 17 security fixes: 367755363 High CVE-2024-9954: Use after free in AI. Reported by DarkNavy on 2024-09-18 370133761 Medium CVE-2024-9955: Use after free in Web Authentication. Reported by anonymous on 2024-09-29 370482421 Medium CVE-2024-9956:...

8.8CVSS7.8AI score0.06295EPSS
Exploits3References1
OpenVAS
OpenVAS
added 2024/10/11 12:0 a.m.19 views

Microsoft Edge (Chromium-Based) Multiple Vulnerabilities - Oct 2024

Microsoft Edge Chromium-Based is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.6CVSS9.1AI score0.00592EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/10/09 12:0 a.m.27 views

CentOS 6 : chromium-browser (RHSA-2020:1970)

The remote CentOS Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:1970 advisory. - Out of bounds read and write in PDFium in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to potentially exploit heap corruption via a...

8.8CVSS7.9AI score0.02888EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2024/10/09 12:0 a.m.30 views

CentOS 6 : chromium-browser (RHSA-2020:4235)

The remote CentOS Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:4235 advisory. - Use after free in payments in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTM...

8.8CVSS8.2AI score0.02553EPSS
Exploits4References28
OpenVAS
OpenVAS
added 2024/10/08 12:0 a.m.16 views

openSUSE Security Advisory (openSUSE-SU-2024:0327-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.6CVSS9.2AI score0.00592EPSS
Exploits1References3
OSV
OSV
added 2024/10/07 9:7 a.m.14 views

OPENSUSE-SU-2024:0327-1 Security update for chromium

This update for chromium fixes the following issues: Chromium 129.0.6668.89 stable released 2024-09-24 boo1231232 CVE-2024-7025: Integer overflow in Layout CVE-2024-9369: Insufficient data validation in Mojo CVE-2024-9370: Inappropriate implementation in V8...

9.6CVSS9.1AI score0.00592EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2024/10/07 12:0 a.m.18 views

Fedora: Security Advisory (FEDORA-2024-452b60addf)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.6CVSS8.6AI score0.05811EPSS
Exploits5References8
Tenable Nessus
Tenable Nessus
added 2024/10/06 12:0 a.m.20 views

Fedora 39 : chromium (2024-7aba3c1531)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-7aba3c1531 advisory. update to 129.0.6668.89 High CVE-2024-7025: Integer overflow in Layout High CVE-2024-9369: Insufficient data validation in Mojo High CVE-2024-9370:...

9.6CVSS8AI score0.05811EPSS
Exploits5References10
Microsoft CVE
Microsoft CVE
added 2024/10/03 10:14 p.m.31 views

Chromium: CVE-2024-9369 Insufficient data validation in Mojo

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

9.6CVSS6.6AI score0.00585EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/10/03 12:0 a.m.44 views

Microsoft Edge (Chromium) < 129.0.2792.79 Multiple Vulnerabilities

The version of Microsoft Edge installed on the remote Windows host is prior to 129.0.2792.79. It is, therefore, affected by multiple vulnerabilities as referenced in the October 3, 2024 advisory. - Integer overflow in Layout. CVE-2024-7025 - Insufficient data validation in Mojo. CVE-2024-9369 -...

9.6CVSS6.9AI score0.00592EPSS
Exploits1References7
Rows per page
Query Builder