Lucene search
K

644 matches found

OSV
OSV
added 2022/07/26 10:15 p.m.2 views

UBUNTU-CVE-2022-1633

Use after free in Sharesheet in Google Chrome on Chrome OS prior to 101.0.4951.64 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via specific user interactions...

8.8CVSS5.8AI score0.00683EPSS
Exploits0References2
OSV
OSV
added 2022/07/26 10:15 p.m.1 views

UBUNTU-CVE-2022-1640

Use after free in Sharing in Google Chrome prior to 101.0.4951.64 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS5.8AI score0.00735EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2022/07/26 9:57 p.m.53 views

CVE-2022-1641

Use after free in Web UI Diagnostics in Google Chrome on Chrome OS prior to 101.0.4951.64 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via specific user interaction...

8.8CVSS9.7AI score0.00776EPSS
Exploits1
Debian CVE
Debian CVE
added 2022/07/26 9:56 p.m.38 views

CVE-2022-1640

Use after free in Sharing in Google Chrome prior to 101.0.4951.64 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS9.5AI score0.00735EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2022/07/26 9:56 p.m.45 views

CVE-2022-1640

Use after free in Sharing in Google Chrome prior to 101.0.4951.64 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS9AI score0.00735EPSS
Exploits0
Debian CVE
Debian CVE
added 2022/07/26 9:55 p.m.42 views

CVE-2022-1635

Use after free in Permission Prompts in Google Chrome prior to 101.0.4951.64 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via specific user interactions...

8.8CVSS9.7AI score0.00676EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2022/07/26 9:55 p.m.41 views

CVE-2022-1635

Use after free in Permission Prompts in Google Chrome prior to 101.0.4951.64 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via specific user interactions...

8.8CVSS9.1AI score0.00676EPSS
Exploits0
CVE
CVE
added 2022/07/26 9:55 p.m.149 views

CVE-2022-1633

CVE-2022-1633 : Use-after-free in Sharesheet of Google Chrome on Chrome OS prior to 101.0.4951.64. Exploitation required user interaction with specific UI actions, potentially enabling heap corruption and remote code execution as stated in the vulnerability description. Affected product: Google C...

8.8CVSS8.9AI score0.00683EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2022/07/26 9:55 p.m.144 views

CVE-2022-1633

Use after free in Sharesheet in Google Chrome on Chrome OS prior to 101.0.4951.64 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via specific user interactions...

8.8CVSS9.7AI score0.00683EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2022/07/26 9:55 p.m.51 views

CVE-2022-1633

Use after free in Sharesheet in Google Chrome on Chrome OS prior to 101.0.4951.64 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via specific user interactions...

8.8CVSS9.1AI score0.00683EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2022/07/26 9:33 p.m.61 views

CVE-2022-1489

Out of bounds memory access in UI Shelf in Google Chrome on Chrome OS, Lacros prior to 101.0.4951.41 allowed a remote attacker to potentially exploit heap corruption via specific user interactions...

8.8CVSS8.8AI score0.00851EPSS
Exploits1
CNNVD
CNNVD
added 2022/07/25 12:0 a.m.12 views

google-cloudstorage-commands 命令注入漏洞

google-cloudstorage-commands is a set of commands for node and gcloud interactions from the individual developers at sam. A security vulnerability exists in google-cloudstorage-commands, which stems from the vulnerability of this package to command injection attacks...

9.8CVSS8.3AI score0.00823EPSS
Exploits1References3
NVD
NVD
added 2022/07/22 5:15 p.m.15 views

CVE-2022-0980

Use after free in New Tab Page in Google Chrome prior to 99.0.4844.74 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via specific user interactions...

8.8CVSS0.00479EPSS
Exploits1References3
OSV
OSV
added 2022/07/22 5:15 p.m.20 views

CVE-2022-0980

Use after free in New Tab Page in Google Chrome prior to 99.0.4844.74 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via specific user interactions...

8.8CVSS9.6AI score
Exploits0References3
UbuntuCve
UbuntuCve
added 2022/07/22 5:15 p.m.27 views

CVE-2022-0980

Use after free in New Tab Page in Google Chrome prior to 99.0.4844.74 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via specific user interactions...

8.8CVSS7.2AI score0.00479EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/07/22 5:15 p.m.5 views

CVE-2022-0980

Use after free in New Tab Page in Google Chrome prior to 99.0.4844.74 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via specific user interactions...

8.8CVSS7.7AI score0.00479EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2022/07/21 9:6 p.m.41 views

CVE-2022-0980

Use after free in New Tab Page in Google Chrome prior to 99.0.4844.74 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via specific user interactions...

8.8CVSS9.7AI score0.00479EPSS
Exploits1
Code423n4
Code423n4
added 2022/07/19 12:0 a.m.12 views

Reentrancy for function call before state update

Lines of code Vulnerability details Impact An external call "transfer" is made before updating state data through "setFuses" and "setFuses" does not depend on any data from "transfer". . Proof of Concept Reentrancy is not only an effect of Ether transfer but of any function call on another...

6.9AI score
Exploits0
Code423n4
Code423n4
added 2022/07/19 12:0 a.m.9 views

Reentrancy from _transferAndBurnFuses

Lines of code Vulnerability details Impact Reentrancy attack Proof of Concept The function transferAndBurnFuses is not performing Checks-Effects-Interactions pattern, and updates fuses after NFTs are transfered. An attacker can reenter because transfer is performing a doSafeTransferAcceptanceChec...

6.8AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/06/30 2:13 p.m.17 views

Immigration organisations targeted by APT group Evilnum

Organisations working in the immigration sector are advised to be on high alert for Advanced Persistent Threat APT attacks. Bleeping Computer reports that European organisations, specifically, are under threat from the Evilnum hacking group. Evilnum, on the APT scene since 2018 at the earliest an...

0.3AI score
Exploits0
Rows per page
Query Builder