Lucene search
K

6686 matches found

AlmaLinux
AlmaLinux
added 2024/11/12 12:0 a.m.22 views

Important: webkit2gtk3 security update

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fixes: webkit: visiting a malicious website may lead to address bar spoofing CVE-2023-42843 webkit: heap use-after-free may lead to arbitrary code execution CVE-2023-42950 webkit: processing malicious...

9.6CVSS8.5AI score0.01344EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2024/11/12 12:0 a.m.4 views

PT-2024-8784 · Intel · Intel Rendering Toolkit

Name of the Vulnerable Software and Affected Versions: Intel Rendering Toolkit versions prior to 2024.1.0 Description: The issue is related to an uncontrolled search path in some Intel Rendering Toolkit software. This may allow an authenticated user to potentially enable escalation of privilege v...

6.7CVSS7.3AI score0.00165EPSS
Exploits0References5
Intel
Intel
added 2024/11/12 12:0 a.m.5 views

Intel® Rendering Toolkit Software Advisory

Summary: A potential security vulnerability in some Intel® Rendering Toolkit software may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2024-26017 Description: Uncontrolled search path in some Intel®...

6.7CVSS7.1AI score0.00165EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/11/12 12:0 a.m.6 views

PT-2024-8967 · Google +4 · Google Chrome +4

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 131.0.6778.69 Microsoft Edge affected versions not specified Description: The issue is related to an inappropriate implementation in Extensions in Google Chrome and a vulnerability in the Blink rendering module...

8.8CVSS6AI score0.00362EPSS
Exploits2References67
Tenable Nessus
Tenable Nessus
added 2024/11/12 12:0 a.m.10 views

RHEL 9 : poppler (RHSA-2024:9167)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:9167 advisory. Poppler is a Portable Document Format PDF rendering library, used by applications such as Evince. Security Fixes: poppler: pdfinfo: crash in broken...

7.5CVSS7.5AI score0.00785EPSS
Exploits0References6
Microsoft CVE
Microsoft CVE
added 2024/11/09 8:0 a.m.3 views

drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream

...

5.5CVSS6.8AI score0.00248EPSS
Exploits0
Fedora
Fedora
added 2024/11/04 1:37 a.m.16 views

[SECURITY] Fedora 39 Update: webkitgtk-2.46.3-1.fc39

WebKitGTK is the port of the WebKit web rendering engine to the GTK platform...

5.4CVSS7.3AI score0.0095EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/11/04 12:0 a.m.14 views

Fedora 39 : webkitgtk (2024-0f8a88da75)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-0f8a88da75 advisory. Update to WebKitGTK 2.46.3: Flatten layers to a plane when preseve-3d style is set. Fix DuckDuckGo links by adding a user agent quirk. Fix several...

5.4CVSS6.6AI score0.0095EPSS
Exploits0References3
Fedora
Fedora
added 2024/11/02 2:25 a.m.15 views

[SECURITY] Fedora 41 Update: webkitgtk-2.46.3-1.fc41

WebKitGTK is the port of the WebKit web rendering engine to the GTK platform...

5.4CVSS6.9AI score0.0095EPSS
Exploits0
CNVD
CNVD
added 2024/10/30 12:0 a.m.1 views

JetBrains YouTrack Cross-Site Scripting Vulnerability (CNVD-2025-16700)

JetBrains YouTrack is a project management tool, developed by JetBrains, supporting cloud hosting and local deployment, providing task management, team collaboration, time tracking and other features for software development, human resources and other scenarios. JetBrains YouTrack suffers from a...

5.4CVSS6.1AI score0.00292EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/10/29 4:16 a.m.1 views

SUSE CVE-2024-49992

In the Linux kernel, the following vulnerability has been resolved: drm/stm: Avoid use-after-free issues with crtc and plane ltdcload calls functions drmcrtcinitwithplanes, drmuniversalplaneinit and drmencoderinit. These functions should not be called with parameters allocated with devmkzalloc to...

7.8CVSS7.9AI score0.00239EPSS
Exploits0References6
OSV
OSV
added 2024/10/28 1:15 p.m.2 views

CVE-2024-50580

In JetBrains YouTrack before 2024.3.47707 multiple XSS were possible due to insecure markdown parsing and custom rendering rule...

5.4CVSS5.8AI score0.00292EPSS
Exploits0References1
NVD
NVD
added 2024/10/28 1:15 p.m.13 views

CVE-2024-50580

In JetBrains YouTrack before 2024.3.47707 multiple XSS were possible due to insecure markdown parsing and custom rendering rule...

5.4CVSS0.00292EPSS
Exploits0References1
CVE
CVE
added 2024/10/28 12:55 p.m.73 views

CVE-2024-50580

JetBrains YouTrack is affected in versions before 2024.3.47707 due to insecure markdown parsing and a faulty rendering rule, enabling multiple cross-site scripting (XSS) vectors. The impact is limited to XSS as described in the vendor advisory; remediation is to upgrade to 2024.3.47707 or newer (...

5.4CVSS6.2AI score0.00292EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/10/28 12:55 p.m.14 views

CVE-2024-50580

In JetBrains YouTrack before 2024.3.47707 multiple XSS were possible due to insecure markdown parsing and custom rendering rule...

4.6CVSS0.00292EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/28 12:55 p.m.11 views

CVE-2024-50580

In JetBrains YouTrack before 2024.3.47707 multiple XSS were possible due to insecure markdown parsing and custom rendering rule...

4.6CVSS4.6AI score0.00292EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/10/28 12:58 a.m.48 views

Important: Red Hat Security Advisory: webkit2gtk3 security update

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

9.8CVSS7.6AI score0.0937EPSS
Exploits2References13
CNNVD
CNNVD
added 2024/10/28 12:0 a.m.1 views

JetBrains YouTrack 跨站脚本漏洞

JetBrains YouTrack is a project management tool, developed by JetBrains, supporting cloud hosting and local deployment, providing task management, team collaboration, time tracking and other features for software development, human resources and other scenarios. JetBrains YouTrack suffers from a...

5.4CVSS6AI score0.00292EPSS
Exploits0References1
Rockylinux
Rockylinux
added 2024/10/25 5:17 p.m.34 views

webkit2gtk3 security update

An update is available for webkit2gtk3. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list WebKitGTK is the port of the portable web rendering engine WebKit to the...

9.8CVSS8.7AI score0.01135EPSS
Exploits0
Imperva Blog
Imperva Blog
added 2024/10/22 1:0 p.m.68 views

ShadyShader: Crashing Apple Devices with a Single Click

Introduction A while ago, we discovered an interesting vulnerability in the GPU’s drivers of iPhones, iPads, and macOS computers with M-series chips. Dubbed ShadyShader, this flaw allows a specially crafted shader program to overwhelm Apple’s GPU, causing repeated freezes that ultimately lead to ...

6.4AI score0.00913EPSS
Exploits0
Rows per page
Query Builder