Lucene search
K

4509 matches found

Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.4 views

PT-2025-49852

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 146 Firefox ESR versions prior to 140.6 Thunderbird versions prior to 146 Thunderbird versions prior to 140.6 Description The JavaScript Engine contains a JIT miscompilation issue within the JIT component. This relate...

9.8CVSS6.5AI score0.00481EPSS
Exploits1References265
SUSE CVE
SUSE CVE
added 2024/12/20 4:18 a.m.2 views

SUSE CVE-2024-12693

Out of bounds memory access in V8 in Google Chrome prior to 131.0.6778.204 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.7AI score0.00402EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/12/20 4:18 a.m.3 views

SUSE CVE-2024-12695

Out of bounds write in V8 in Google Chrome prior to 131.0.6778.204 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.8AI score0.00383EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/12/18 12:0 a.m.4 views

Google Chrome 安全漏洞

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a code execution vulnerability that is caused by an out-of-bounds write in V8. An attacker can exploit the vulnerability to execute arbitrary code on the system...

8.8CVSS8.2AI score0.00383EPSS
Exploits1References4
CNVD
CNVD
added 2024/12/17 12:0 a.m.3 views

Google Chrome Type Obfuscation Vulnerability

Google Chrome is a free web browser developed by Google. It is the world's largest browser in terms of market share due to its speed, security, simplicity, multi-platform support and built-in privacy protection. Google Chrome suffers from a type confusion vulnerability that stems from the V8...

8.8CVSS6.9AI score0.04013EPSS
Exploits2References1
OSV
OSV
added 2024/12/12 1:40 a.m.1 views

DEBIAN-CVE-2024-12381

Type Confusion in V8 in Google Chrome prior to 131.0.6778.139 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS8.2AI score0.04013EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2024/12/12 12:0 a.m.7 views

PT-2024-9699 · Microsoft +4 · Edge +5

Name of the Vulnerable Software and Affected Versions: Chromium versions prior to 131.0.6778.204 Google Chrome versions prior to 131.0.6778.204 Microsoft Edge affected versions not specified Description: A vulnerability exists in the V8 JavaScript engine used by Google Chrome and Microsoft Edge...

10CVSS8AI score0.06564EPSS
Exploits6References61
SUSE CVE
SUSE CVE
added 2024/12/11 4:12 a.m.2 views

SUSE CVE-2024-12381

Type Confusion in V8 in Google Chrome prior to 131.0.6778.139 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.1AI score0.04013EPSS
Exploits2References3
CNNVD
CNNVD
added 2024/12/10 12:0 a.m.11 views

Google Chrome 安全漏洞

Google Chrome is a WEB browser developed by Google Inc. Google Chrome V8 suffers from a use-after-release vulnerability that can be exploited by an attacker to execute arbitrary code...

8.8CVSS7.3AI score0.04071EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/12/10 12:0 a.m.3 views

PT-2024-9661

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 131.0.6778.139 Chromium versions prior to 131.0.6778.139 Description A type confusion issue exists in the V8 JavaScript engine component of Google Chrome and Chromium. This issue could allow a remote attacker to...

10CVSS9AI score0.04071EPSS
Exploits2References53
Gentoo Linux
Gentoo Linux
added 2024/12/08 12:0 a.m.18 views

Spidermonkey: Multiple Vulnerabilities

Background SpiderMonkey is Mozilla’s JavaScript and WebAssembly Engine, used in Firefox, Servo and various other projects. It is written in C++, Rust and JavaScript. You can embed it into C++ and Rust projects, and it can be run as a stand-alone shell. Description Multiple vulnerabilities have be...

9.8CVSS7.6AI score0.04395EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2024/12/05 12:37 a.m.2 views

SUSE CVE-2024-12053

Type Confusion in V8 in Google Chrome prior to 131.0.6778.108 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7AI score0.00862EPSS
Exploits0References5
OSV
OSV
added 2024/12/03 7:15 p.m.1 views

DEBIAN-CVE-2024-12053

Type Confusion in V8 in Google Chrome prior to 131.0.6778.108 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS8.8AI score0.00862EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/03 12:0 a.m.6 views

Google Chrome 安全漏洞

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a code execution vulnerability that is caused by type confusion in V8. An attacker can exploit the vulnerability to execute arbitrary code on the system...

8.8CVSS8AI score0.00862EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/12/03 12:0 a.m.5 views

PT-2024-9999

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 131.0.6778.108 Description A type confusion issue exists in the V8 JavaScript engine, specifically involving WebAssembly where relative types leak from the type canonicalizer. This flaw allows a remote attacker ...

10CVSS9.3AI score0.00862EPSS
Exploits0References43
OSV
OSV
added 2024/11/27 12:15 p.m.8 views

CVE-2024-42331

In the src/libs/zbxembed/browser.c file, the esbrowserctor method retrieves a heap pointer from the Duktape JavaScript engine. This heap pointer is subsequently utilized by the browserpusherror method in the src/libs/zbxembed/browsererror.c file. A use-after-free bug can occur at this stage if th...

3.3CVSS6.6AI score
Exploits0References2
Cvelist
Cvelist
added 2024/11/27 12:6 p.m.24 views

CVE-2024-42331 Use after free in browser_push_error

In the src/libs/zbxembed/browser.c file, the esbrowserctor method retrieves a heap pointer from the Duktape JavaScript engine. This heap pointer is subsequently utilized by the browserpusherror method in the src/libs/zbxembed/browsererror.c file. A use-after-free bug can occur at this stage if th...

3.3CVSS0.00261EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/27 12:6 p.m.19 views

CVE-2024-42331 Use after free in browser_push_error

In the src/libs/zbxembed/browser.c file, the esbrowserctor method retrieves a heap pointer from the Duktape JavaScript engine. This heap pointer is subsequently utilized by the browserpusherror method in the src/libs/zbxembed/browsererror.c file. A use-after-free bug can occur at this stage if th...

3.3CVSS7.1AI score0.00261EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/11/26 12:0 a.m.11 views

CVE-2024-11696

The application failed to account for exceptions thrown by the loadManifestFromFile method during add-on signature verification. This flaw, triggered by an invalid or unsupported extension manifest, could have caused runtime errors that disrupted the signature validation process. As a result, the...

5.4CVSS6.8AI score0.00347EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2024/11/26 12:0 a.m.11 views

CVE-2024-11695

A crafted URL containing Arabic script and whitespace characters could have hidden the true origin of the page, resulting in a potential spoofing attack. This vulnerability affects Firefox 133, Firefox ESR 128.5, Thunderbird 133, and Thunderbird 128.5...

5.4CVSS6.8AI score0.00441EPSS
Exploits0References10
Rows per page
Query Builder