CVE-2026-33361

Affected software: Meari IoT SDK image handling (libmrplayer.so) as used in CloudEdge 5.5.0 (build 220), Arenti 1.8.1 (build 220), and related white-label apps (≤ 1.8.x). Vulnerability detail: baby monitor ".jpgx3" files use reversible XOR over only the first 1024 bytes with a predictable key der...

CVE-2021-3130

Within the Open-AudIT up to version 3.5.3 application, the web interface hides SSH secrets, Windows passwords, and SNMP strings from users using HTML 'password field' obfuscation. By using Developer tools or similar, it is possible to change the obfuscation so that the credentials are visible...

Google Chrome 安全漏洞

Google Chrome is a web browser from Google, Inc. A type obfuscation vulnerability exists in versions prior to Google Chrome 111.0.5563.64, which stems from a type obfuscation issue in V8. An attacker could use this vulnerability to cause heap corruption via specially crafted HTML pages...

Microsoft Edge 安全漏洞

Chrome, a web browsing tool developed by Google, is vulnerable to a type obfuscation vulnerability in V8 in versions prior to Google Chrome 92.0.4515.159. An attacker could exploit this vulnerability to execute arbitrary code inside a sandbox via a crafted HTML page...

Google Chrome 安全漏洞

Chrome, a web browsing tool developed by Google, is vulnerable to a type obfuscation vulnerability in V8 in versions prior to Google Chrome 91.0.4472.164. An attacker could use this vulnerability to execute arbitrary code on the system or cause the application to crash...

Autodesk Design Review 安全漏洞

Autodesk Design Review ADR is a suite of AutoCAD drafting software support software from Autodesk, Inc. The software supports viewing, marking, measuring, printing, and tracking changes to 2D and 3D design files.Autodesk Design Review is vulnerable to a type obfuscation vulnerability that could b...

Brave Status Bar Obfuscation Vulnerability

Brave is a Web browser product from Brave Software, Inc. in the United States. A status bar obfuscation vulnerability exists in Brave version 0.12.4, which may unintentionally redirect to a malicious website. An attacker can exploit this vulnerability to redirect users to malicious websites,...

xfsprogs: xfs_metadump information disclosure flaw

It was discovered that the xfsmetadump tool of the xfsprogs suite did not fully adhere to the standards of obfuscation described in its man page. In case a user with the necessary privileges used xfsmetadump and relied on the advertised obfuscation, the generated data could contain unexpected...

UBUNTU-CVE-2012-2150

xfsmetadump in xfsprogs before 3.2.4 does not properly obfuscate file data, which allows remote attackers to obtain sensitive information by reading a generated image...

Fedora 21 : xfsprogs-3.2.2-2.fc21 (2015-12406)

Gabriel Vlasiu reported that xfsmetadump, part of the xfsprogs suite of tools for the XFS filesystem, did not properly obfuscate data. xfsmetadump properly obfuscates active metadata, but the rest of the space within that fs block comes through in the clear. This could lead to exposure of stale...

Microsoft Internet Explorer 5.0.1 - Mouse Event URI Status Bar Obfuscation

Microsoft Internet Explorer 5.0.1 - Mouse Event URI Status Bar Obfuscation source: https://www.securityfocus.com/bid/12541/info Microsoft Internet Explorer is reported prone to a URI obfuscation weakness. The issue presents itself when a HREF tag contains certain mouse events. This issue may be...

Mozilla Browser 1.5 - URI MouseOver Obfuscation

Mozilla Browser 1.5 - URI MouseOver Obfuscation source: https://www.securityfocus.com/bid/9203/info It has been discovered that the Mozilla browser is prone to a URI obfuscation weakness that may hide the true contents of a link. The problem occurs when a user@location URI is formatted in such a...