Lucene search
K

180 matches found

Tenable Nessus
Tenable Nessus
added 2016/04/05 12:0 a.m.32 views

Google Chrome < 49.0.2623.75 Multiple Vulnerabilities

Binary data 9202.pasl...

8.8CVSS7.4AI score0.01068EPSS
Exploits1References2
hackapp
hackapp
added 2016/04/01 9:7 a.m.92 views

Miss PeppeR - Customized SSL, MIT license vulnerabilities

HackApp vulnerability scanner discovered that application Miss PeppeR published at the 'play' market has multiple vulnerabilities...

Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/03/23 12:0 a.m.28 views

openSUSE Security Update : Chromium (openSUSE-2016-664)

Chromium was updated to 49.0.2623.75 to fix the following security issues: boo969333 - CVE-2016-1630: Same-origin bypass in Blink - CVE-2016-1631: Same-origin bypass in Pepper Plugin - CVE-2016-1632: Bad cast in Extensions - CVE-2016-1633: Use-after-free in Blink - CVE-2016-1634: Use-after-free i...

10CVSS7AI score0.10339EPSS
Exploits3References15
BDU FSTEC
BDU FSTEC
added 2016/03/17 12:0 a.m.7 views

The vulnerability of Google Chrome browser allows a violator to circumvent existing access restrictions policies.

The vulnerability of the PPBFlashMessageLoopImpl::InternalRun function located in the content/renderer/pepper/ppbflashmessageloopimpl.cc file of the Google Chrome browser plugin for Pepper is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to...

6.8CVSS7.7AI score0.01334EPSS
Exploits2References4Affected Software1
OPENSUSE Linux
OPENSUSE Linux
added 2016/03/11 10:11 p.m.45 views

Security update for Chromium (important)

Chromium was updated to 49.0.2623.75 to fix the following security issues: boo969333 - CVE-2016-1630: Same-origin bypass in Blink - CVE-2016-1631: Same-origin bypass in Pepper Plugin - CVE-2016-1632: Bad cast in Extensions - CVE-2016-1633: Use-after-free in Blink - CVE-2016-1634: Use-after-free i...

10CVSS2.7AI score0.10339EPSS
Exploits3References1
OPENSUSE Linux
OPENSUSE Linux
added 2016/03/08 11:12 a.m.39 views

Security update for Chromium (important)

Chromium was updated to 49.0.2623.75 to fix the following security issues: boo969333 - CVE-2016-1630: Same-origin bypass in Blink - CVE-2016-1631: Same-origin bypass in Pepper Plugin - CVE-2016-1632: Bad cast in Extensions - CVE-2016-1633: Use-after-free in Blink - CVE-2016-1634: Use-after-free i...

10CVSS2.7AI score0.10339EPSS
Exploits3References1
CNVD
CNVD
added 2016/03/08 12:0 a.m.4 views

Google Chrome Pepper plugin same-origin policy bypass vulnerability

Google Chrome is a web browser developed by Google, and Pepper is a player plug-in for playing Flash videos. Versions of the Pepper plugin prior to Google Chrome 49.0.2623.75 have the file content/renderer/pepper/ppbflashmessageloopimpl.cc in the file 'PPBFlashMessageLoop A security vulnerability...

8.8CVSS8.9AI score0.01334EPSS
Exploits2References1
RedHat Linux
RedHat Linux
added 2016/03/07 3:22 a.m.8 views

chromium-browser: same-origin bypass in Pepper Plugin

The PPBFlashMessageLoopImpl::InternalRun function in content/renderer/pepper/ppbflashmessageloopimpl.cc in the Pepper plugin in Google Chrome before 49.0.2623.75 mishandles nested message loops, which allows remote attackers to bypass the Same Origin Policy via a crafted web site...

8.8CVSS7.4AI score0.01334EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2016/03/07 12:0 a.m.37 views

FreeBSD : chromium -- multiple vulnerabilities (f85fa236-e2a6-412e-b5c7-c42120892de5)

Google Chrome Releases reports : 560011 High CVE-2016-1630: Same-origin bypass in Blink. 569496 High CVE-2016-1631: Same-origin bypass in Pepper Plugin. 549986 High CVE-2016-1632: Bad cast in Extensions. 572537 High CVE-2016-1633: Use-after-free in Blink. 559292 High CVE-2016-1634: Use-after-free...

10CVSS7AI score0.02451EPSS
Exploits3References15
OPENSUSE Linux
OPENSUSE Linux
added 2016/03/06 5:11 p.m.44 views

Security update for Chromium (important)

Chromium was updated to 49.0.2623.75 to fix the following security issues: boo969333 - CVE-2016-1630: Same-origin bypass in Blink - CVE-2016-1631: Same-origin bypass in Pepper Plugin - CVE-2016-1632: Bad cast in Extensions - CVE-2016-1633: Use-after-free in Blink - CVE-2016-1634: Use-after-free i...

10CVSS2.7AI score0.10339EPSS
Exploits3References1
NVD
NVD
added 2016/03/06 2:59 a.m.20 views

CVE-2016-1631

The PPBFlashMessageLoopImpl::InternalRun function in content/renderer/pepper/ppbflashmessageloopimpl.cc in the Pepper plugin in Google Chrome before 49.0.2623.75 mishandles nested message loops, which allows remote attackers to bypass the Same Origin Policy via a crafted web site...

8.8CVSS8.6AI score0.01334EPSS
Exploits2References12
OSV
OSV
added 2016/03/06 2:59 a.m.3 views

CVE-2016-1631

The PPBFlashMessageLoopImpl::InternalRun function in content/renderer/pepper/ppbflashmessageloopimpl.cc in the Pepper plugin in Google Chrome before 49.0.2623.75 mishandles nested message loops, which allows remote attackers to bypass the Same Origin Policy via a crafted web site...

8.8CVSS7.3AI score
Exploits0References12
Prion
Prion
added 2016/03/06 2:59 a.m.26 views

Design/Logic Flaw

The PPBFlashMessageLoopImpl::InternalRun function in content/renderer/pepper/ppbflashmessageloopimpl.cc in the Pepper plugin in Google Chrome before 49.0.2623.75 mishandles nested message loops, which allows remote attackers to bypass the Same Origin Policy via a crafted web site...

6.8CVSS6.5AI score0.01334EPSS
Exploits2References12Affected Software1
CVE
CVE
added 2016/03/06 2:0 a.m.92 views

CVE-2016-1631

CVE-2016-1631 affects the Chrome Pepper Plugin API (PPB_Flash_MessageLoop_Impl::InternalRun) in Chrome prior to 49.0.2623.75. The issue arises from mishandling nested message loops, enabling a remote attacker to bypass the Same Origin Policy via a crafted web site. Affected remediation is upgradi...

8.8CVSS8.5AI score0.01334EPSS
Exploits2References12Affected Software1
Cvelist
Cvelist
added 2016/03/06 2:0 a.m.27 views

CVE-2016-1631

The PPBFlashMessageLoopImpl::InternalRun function in content/renderer/pepper/ppbflashmessageloopimpl.cc in the Pepper plugin in Google Chrome before 49.0.2623.75 mishandles nested message loops, which allows remote attackers to bypass the Same Origin Policy via a crafted web site...

8.7AI score0.01334EPSS
Exploits2References12
Debian
Debian
added 2016/03/05 9:22 p.m.157 views

[SECURITY] [DSA 3507-1] chromium-browser security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3507-1 [email protected] https://www.debian.org/security/ Michael Gilbert March 05, 2016 https://www.debian.org/security/faq -...

10CVSS9.4AI score0.10339EPSS
Exploits3
OSV
OSV
added 2016/03/05 12:0 a.m.2 views

UBUNTU-CVE-2016-1631

The PPBFlashMessageLoopImpl::InternalRun function in content/renderer/pepper/ppbflashmessageloopimpl.cc in the Pepper plugin in Google Chrome before 49.0.2623.75 mishandles nested message loops, which allows remote attackers to bypass the Same Origin Policy via a crafted web site...

8.8CVSS7.3AI score0.01334EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2016/03/05 12:0 a.m.33 views

Debian Security Advisory DSA 3507-1 (chromium-browser - security update)

Several vulnerabilities have been discovered in the chromium web browser. CVE-2015-8126 Joerg Bornemann discovered multiple buffer overflow issues in the libpng library. CVE-2016-1630 Mariusz Mlynski discovered a way to bypass the Same Origin Policy in Blink/Webkit. CVE-2016-1631 Mariusz Mlynski...

10CVSS0.6AI score0.10339EPSS
Exploits3References1
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.36 views

Google Chrome < 49.0.2623.75 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 49.0.2623.75. It is, therefore, affected by multiple vulnerabilities as referenced in the 201603stable-channel-update advisory. - Multiple unspecified vulnerabilities in Google Chrome before 49.0.2623.75 allow attackers t...

10CVSS7.5AI score0.10339EPSS
Exploits3References28
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.44 views

Google Chrome < 49.0.2623.75 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 49.0.2623.75. It is, therefore, affected by multiple vulnerabilities as referenced in the 201603stable-channel-update advisory. - Multiple unspecified vulnerabilities in Google Chrome before 49.0.2623.75 allow attackers...

10CVSS7.5AI score0.10339EPSS
Exploits3References28
Rows per page
Query Builder