Lucene search
+L

151 matches found

BDU FSTEC
BDU FSTEC
added 2023/12/04 12:0 a.m.8 views

The vulnerability of the Libavif library for encoding and decoding .avif files allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information. This vulnerability is exploitable through attacks using Google Chrome and Microsoft Edge browsers.

The vulnerability of the Libavif library for encoding and decoding .avif files in Google Chrome and Microsoft Edge browsers is related to the use of memory after file processing for .avif formats. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, an...

10CVSS7.6AI score0.00913EPSS
Exploits0References14Affected Software4
BDU FSTEC
BDU FSTEC
added 2023/12/04 12:0 a.m.7 views

The vulnerability of the Libavif library for encoding and decoding .avif files allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information. This vulnerability is exploitable through attacks using Google Chrome and Microsoft Edge browsers.

The vulnerability of the Libavif library for encoding and decoding .avif files in Google Chrome and Microsoft Edge browsers is related to the issue of operations going beyond the buffer boundaries in memory when processing .avif files. Exploiting this vulnerability can allow an attacker to...

10CVSS7.8AI score0.01118EPSS
Exploits0References15Affected Software4
Veracode
Veracode
added 2023/12/01 3:14 p.m.36 views

Use After Free

Google Chrome is vulnerable to Use After Free. The vulnerability exists in libavif, potentially enabling an attacker to exploit heap corruption through a maliciously crafted AVIF file...

8.8CVSS6.7AI score0.01118EPSS
Exploits0References8Affected Software1
Veracode
Veracode
added 2023/12/01 3:14 p.m.31 views

Use After Free

Google Chrome is vulnerable to Use After Free. The vulnerability exists in libavif, potentially enabling an attacker to exploit heap corruption through a maliciously crafted AVIF file...

8.8CVSS6.6AI score0.00913EPSS
Exploits0References8Affected Software1
SUSE CVE
SUSE CVE
added 2023/12/01 2:20 a.m.2 views

SUSE CVE-2023-6351

Use after free in libavif in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted avif file. Chromium security severity: High...

8.8CVSS7.1AI score0.00913EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2023/12/01 12:0 a.m.30 views

openSUSE 15 Security Update : chromium (openSUSE-SU-2023:0387-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2023:0387-1 advisory. - Integer overflow in Skia in Google Chrome prior to 119.0.6045.199 allowed a remote attacker who had compromised the renderer process to...

9.6CVSS8.8AI score0.1963EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2023/12/01 12:0 a.m.31 views

FreeBSD : electron26 -- multiple vulnerabilities (7e1a508f-7167-47b0-b9fc-95f541933a86)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 7e1a508f-7167-47b0-b9fc-95f541933a86 advisory. - Integer overflow in Skia in Google Chrome prior to 119.0.6045.199 allowed a remote attacker...

9.6CVSS8.7AI score0.1963EPSS
Exploits0References9
Opera Security Advisories
Opera Security Advisories
added 2023/12/01 12:0 a.m.10 views

Update your browser: Security fixes for latest Chrome bugs

News, Security Update your browser: Security fixes for latest Chrome bugs Share December 1st, 2023 Hi everyone! The latest patches to the Opera, Opera GX, and Opera Crypto browsers address several recent vulnerabilities, including a zero-day exploit CVE-2023-6345. We recommend updating your...

9.6CVSS7.3AI score0.1963EPSS
Exploits4References1
SUSE CVE
SUSE CVE
added 2023/11/30 2:6 a.m.11 views

SUSE CVE-2023-6350

Use after free in libavif in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted avif file. Chromium security severity: High...

8.8CVSS7.1AI score0.01118EPSS
Exploits0References7
Microsoft CVE
Microsoft CVE
added 2023/11/29 6:18 p.m.43 views

Chromium: CVE-2023-6351 Use after free in libavif

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.8AI score0.00913EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2023/11/29 6:18 p.m.48 views

Chromium: CVE-2023-6350 Out of bounds memory access in libavif

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.8AI score0.01118EPSS
Exploits0
NVD
NVD
added 2023/11/29 12:15 p.m.27 views

CVE-2023-6351

Use after free in libavif in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted avif file. Chromium security severity: High...

8.8CVSS0.00913EPSS
Exploits0References7
NVD
NVD
added 2023/11/29 12:15 p.m.19 views

CVE-2023-6350

Use after free in libavif in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted avif file. Chromium security severity: High...

8.8CVSS0.01118EPSS
Exploits0References7
OSV
OSV
added 2023/11/29 12:15 p.m.23 views

CVE-2023-6350

Use after free in libavif in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted avif file. Chromium security severity: High...

8.8CVSS6.2AI score
Exploits0References7
OSV
OSV
added 2023/11/29 12:15 p.m.8 views

DEBIAN-CVE-2023-6350

Use after free in libavif in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted avif file. Chromium security severity: High...

8.8CVSS8.2AI score0.01118EPSS
Exploits0References1
OSV
OSV
added 2023/11/29 12:15 p.m.7 views

DEBIAN-CVE-2023-6351

Use after free in libavif in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted avif file. Chromium security severity: High...

8.8CVSS8.2AI score0.00913EPSS
Exploits0References1
Prion
Prion
added 2023/11/29 12:15 p.m.32 views

Design/Logic Flaw

Use after free in libavif in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted avif file. Chromium security severity: High...

6.8CVSS7.2AI score0.01118EPSS
Exploits0References7Affected Software3
UbuntuCve
UbuntuCve
added 2023/11/29 12:15 p.m.30 views

CVE-2023-6351

Use after free in libavif in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted avif file. Chromium security severity: High...

8.8CVSS7.2AI score0.00913EPSS
Exploits0References6
Prion
Prion
added 2023/11/29 12:15 p.m.34 views

Design/Logic Flaw

Use after free in libavif in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted avif file. Chromium security severity: High...

6.8CVSS7.2AI score0.00913EPSS
Exploits0References7Affected Software3
UbuntuCve
UbuntuCve
added 2023/11/29 12:15 p.m.36 views

CVE-2023-6350

Use after free in libavif in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted avif file. Chromium security severity: High...

8.8CVSS7.2AI score0.01118EPSS
Exploits0References6
Rows per page
Query Builder