The vulnerability of the HTTPS-only Mode setting in the Firefox browser allows attackers to carry out clickjacking attacks.

The vulnerability of the HTTPS-only Mode setting in the Firefox browser is related to information representation errors in the user interface. Exploiting this vulnerability can allow a remote attacker to carry out a clickjacking attack...

The vulnerability in the full-screen mode of the Firefox browser allows attackers to perform spoofing attacks.

The vulnerability of the full-screen mode of the Firefox browser is related to information representation errors in the user interface. Exploiting this vulnerability can allow a remote attacker to perform spoofing attacks...

The vulnerability of the Microsoft OneNote note-taking software, related to errors in information presentation on the user interface, allows attackers to perform spear-phishing attacks.

The vulnerability of the Microsoft OneNote note-taking software relates to information representation errors in the user interface. Exploiting this vulnerability can allow attackers to perform spear-phishing attacks remotely...

PT-2023-4299 · Microsoft · Outlook

Name of the Vulnerable Software and Affected Versions: Microsoft Outlook affected versions not specified Description: The issue is related to errors in the representation of information by the user interface of the Microsoft Outlook email client. Exploitation of this issue may allow a remote...

PT-2023-3921 · Microsoft · Edge

Name of the Vulnerable Software and Affected Versions: Microsoft Edge Chromium-based affected versions not specified Description: The issue is related to errors in presenting information to the user interface, which can allow a remote attacker to perform a spoofing attack. Recommendations: At the...

PT-2023-3843 · Microsoft · Edge

Name of the Vulnerable Software and Affected Versions: Microsoft Edge for Android Chromium-based affected versions not specified Description: The issue is related to errors in the representation of information by the user interface. Exploitation of this issue may allow a remote attacker to perfor...

CVE-2023-32229

CVE-2023-32229 affects Bosch IP cameras in the CPP13/CPP14 families. The issue arises from an error in the software interface to the secure element chip, which can permanently damage the chip when enabling the Stream security option (signing the video stream) with MD5, SHA-1 or SHA-256. Public re...

The vulnerability in the `window.open` method of Mozilla Firefox, Focus for Android, Mozilla Firefox ESR, and the email client Thunderbird allows a hacker to conceal full-screen notifications and perform spoofing attacks.

The vulnerability of the window.open method in Mozilla Firefox, Focus for Android, Mozilla Firefox ESR, and the email client Thunderbird is related to information representation errors in the user interface. Exploiting this vulnerability can allow an attacker to conceal full-screen notifications...

NetScaler firmware upgrade to 13.1-42.47 or later versions failing from GUI

NetScalers havingany builds of 12.1 or 13.0 version or earlier than 13.1-42.47 cannot perform an upgrade to the version 13.1-42.47 or later through GUI. Trying to perform an upgrade through GUI reports an error "file too large" or UI might hang...

The vulnerability of the Microsoft Office application suite for Android, related to information representation errors in the user interface, allows attackers to perform spear-phishing attacks.

The vulnerability of the Microsoft Office application suite for Android is related to information representation errors in the user interface. Exploiting this vulnerability can allow attackers to carry out spear-phishing attacks...

PT-2022-5888 · Microsoft · Outlook For Mac

Name of the Vulnerable Software and Affected Versions: Microsoft Outlook for Mac affected versions not specified Description: The issue is related to errors in the representation of information by the user interface. It may allow a remote attacker to conduct spoofing attacks using a specially...

PT-2022-16235 · Lg · Webos

Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned. Description: The issue allows an attacker to bypass API access control due to a public API error. Recommendations: At the moment, there is no information about a newer version that contains a fix fo...

PT-2022-1698 · Microsoft · Edge

Name of the Vulnerable Software and Affected Versions: Microsoft Edge Chromium-based affected versions not specified Description: The issue is related to errors in the representation of information by the user interface. Exploitation of this issue may allow a remote attacker to conduct spoofing...

Samsung Internet 安全漏洞

Samsung Internet is an application for Samsung Samsung mobile devices that provides browser functionality. A user download interface error vulnerability exists in versions prior to Samsung Internet 16.0.6.23, which can be exploited by an attacker to perform domain spoofing via a specially crafted...

USN-5015-1 linux-oem-5.10 vulnerabilities

It was discovered that the virtual file system implementation in the Linux kernel contained an unsigned to signed integer conversion error. A local attacker could use this to cause a denial of service system crash or execute arbitrary code. CVE-2021-33909 Michael Brown discovered that the Xen...

PT-2021-3090 · Microsoft · Exchange Server

Name of the Vulnerable Software and Affected Versions: Microsoft Exchange Server affected versions not specified Description: The issue is related to errors in the representation of information by the user interface, allowing a remote attacker to conduct spoofing attacks. It affects the system,...

Debian DSA-4906-1 : chromium - security update

Several vulnerabilities have been discovered in the chromium web browser. - CVE-2021-21201 Gengming Liu and Jianyu Chen discovered a use-after-free issue. - CVE-2021-21202 David Erceg discovered a use-after-free issue in extensions. - CVE-2021-21203 asnine discovered a use-after-free issue in...

[SECURITY] [DSA 4846-1] chromium security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4846-1 [email protected] https://www.debian.org/security/ Michael Gilbert February 07, 2021 https://www.debian.org/security/faq -...

Debian: Security Advisory (DSA-4606-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DSA 4606-1] chromium security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4606-1 [email protected] https://www.debian.org/security/ Michael Gilbert January 20, 2020 https://www.debian.org/security/faq -...