390 matches found
Google Chrome Security Update (stable-channel-update-for-desktop-2024-10) - Windows
Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...
Google Chrome < 129.0.6668.89 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 129.0.6668.89. It is, therefore, affected by multiple vulnerabilities as referenced in the 202410stable-channel-update-for-desktop advisory. - This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests...
qt6-webengine -- Multiple vulnerabilities
Qt qtwebengine-chromium repo reports: Backports for 16 security bugs in Chromium: CVE-2024-9120: Use after free in Dawn CVE-2024-9122: Type Confusion in V8 CVE-2024-9123: Integer overflow in Skia CVE-2024-9369: Insufficient data validation in Mojo CVE-2024-9602: Type confusion in V8 CVE-2024-9603...
openSUSE 15 Security Update : chromium (openSUSE-SU-2024:0312-1)
The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0312-1 advisory. - Chromium 129.0.6668.58 stable released 2024-09-17 boo1230678 CVE-2024-8904: Type Confusion in V8 CVE-2024-8905: Inappropriate implementation in...
OPENSUSE-SU-2024:0311-1 Security update for chromium
This update for chromium fixes the following issues: Chromium 129.0.6668.58 stable released 2024-09-17 boo1230678 CVE-2024-8904: Type Confusion in V8 CVE-2024-8905: Inappropriate implementation in V8 CVE-2024-8906: Incorrect security UI in Downloads CVE-2024-8907: Insufficient data validation in...
CVE-2024-7023
Insufficient data validation in Updater in Google Chrome prior to 128.0.6537.0 allowed a remote attacker to perform privilege escalation via a malicious file. Chromium security severity: Medium...
CVE-2024-7023
Insufficient data validation in Updater in Google Chrome prior to 128.0.6537.0 allowed a remote attacker to perform privilege escalation via a malicious file. Chromium security severity: Medium...
CVE-2018-20072
Insufficient data validation in PDF in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform out of bounds memory access via a crafted PDF file. Chromium security severity: Low...
Fedora: Security Advisory (FEDORA-2024-3d29b1647b)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2024-8907
Insufficient data validation in Omnibox in Google Chrome on Android prior to 129.0.6668.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML XSS via a crafted set of UI gestures. Chromium security severity: Medium...
Google Chrome < 129.0.6668.58 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 129.0.6668.58. It is, therefore, affected by multiple vulnerabilities as referenced in the 202409stable-channel-update-for-desktop17 advisory. - Inappropriate implementation in V8 in Google Chrome prior to 129.0.6668.58...
Google Chrome < 129.0.6668.58 Multiple Vulnerabilities
The version of Google Chrome installed on the remote macOS host is prior to 129.0.6668.58. It is, therefore, affected by multiple vulnerabilities as referenced in the 202409stable-channel-update-for-desktop17 advisory. - Inappropriate implementation in V8 in Google Chrome prior to 129.0.6668.58...
NewStart CGSL MAIN 6.02 : sqlite Multiple Vulnerabilities (NS-SA-2024-0063)
The remote NewStart CGSL host, running version MAIN 6.02, has sqlite packages installed that are affected by multiple vulnerabilities: - Insufficient data validation in SQLite in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to bypass defense-in-depth measures via a crafted HTML...
Microsoft Edge (Chromium) < 128.0.2739.42 Multiple Vulnerabilities
The version of Microsoft Edge installed on the remote Windows host is prior to 128.0.2739.42. It is, therefore, affected by multiple vulnerabilities as referenced in the August 22, 2024 advisory. - Microsoft Edge HTML-based Memory Corruption Vulnerability CVE-2024-38207 - Microsoft Edge...
Chromium: CVE-2024-7980 Insufficient data validation in Installer
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2024-7974 Insufficient data validation in V8 API
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
KLA71827 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, bypass security restrictions, gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Inappropriate...
CVE-2024-7977
Insufficient data validation in Installer in Google Chrome on Windows prior to 128.0.6613.84 allowed a local attacker to perform privilege escalation via a malicious file. Chromium security severity: Medium...
DEBIAN-CVE-2024-7980
Insufficient data validation in Installer in Google Chrome on Windows prior to 128.0.6613.84 allowed a local attacker to perform privilege escalation via a crafted symbolic link. Chromium security severity: Medium...
CVE-2024-7980
Insufficient data validation in Installer in Google Chrome on Windows prior to 128.0.6613.84 allowed a local attacker to perform privilege escalation via a crafted symbolic link. Chromium security severity: Medium...