17 matches found
CVE-2026-5897
CVE-2026-5897 affects Google Chrome on desktop prior to version 147.0.7727.55. The flaw is an incorrect security UI in Downloads that allows UI spoofing via a crafted HTML page when a user is convinced to perform specific UI gestures. This is a remote-interaction risk, with exploitation possible ...
EUVD-2020-27629
Malware in sbrugna...
EUVD-2005-2360
Malware in sbrugna...
EUVD-2021-8606
Malicious code in bioql PyPI...
CLSA-2025-1755113592 Fix CVE(s): CVE-2025-3576
SECURITY UPDATE: prevent spoofing vulnerability in GSSAPI-protected messages using RC4-HMAC-MD5 due to weaknesses in MD5 checksum design - debian/patches/CVE-2025-3576: don't issue session keys with deprecated enctypes. Updates tests. - CVE-2025-3576...
CVE-2024-10465
The Mozilla Foundation's Security Advisory: A clipboard "paste" button could persist across tabs which allowed a spoofing attack...
CVE-2024-1676
Inappropriate implementation in Navigation in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to spoof security UI via a crafted HTML page. Chromium security severity: Low...
PT-2023-6637 · Google +3 · Google Chrome +3
Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 119.0.6045.105 Description: The issue is related to incorrect security UI in the Downloads component of Google Chrome, which can be exploited by a remote attacker to obfuscate security UI via a crafted HTML pag...
CVE-2023-5486
Inappropriate implementation in Input in Google Chrome prior to 118.0.5993.70 allowed a remote attacker to spoof security UI via a crafted HTML page. Chromium security severity: Low...
SUSE CVE-2023-4359
Inappropriate implementation in App Launcher in Google Chrome on iOS prior to 116.0.5845.96 allowed a remote attacker to potentially spoof elements of the security UI via a crafted HTML page. Chromium security severity: Medium...
Microsoft Windows Admin Center Spoofing (July 2023)
The remote Windows host is running a version of Microsoft Windows Admin Center that is missing a security update. It is, therefore, affected by a security spoofing vulnerability. An authenticated, remote attacker can exploit this to bypass security features. Note that Nessus has not tested for th...
UBUNTU-CVE-2020-16033
Inappropriate implementation in WebUSB in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to spoof security UI via a crafted HTML page...
OPENSUSE-SU-2019:1062-1 Security update for chromium
This update for chromium to version 73.0.3683.75 fixes the following issues: Security issues fixed bsc1129059: - CVE-2019-5787: Fixed a use after free in Canvas. - CVE-2019-5788: Fixed a use after free in FileAPI. - CVE-2019-5789: Fixed a use after free in WebMIDI. - CVE-2019-5790: Fixed a heap...
Google Chrome Security UI Spoofing Vulnerability (CNVD-2019-23134)
Chrome is a web browsing tool developed by Google. A security UI spoofing vulnerability exists in versions prior to Google Chrome 73.0.3683.75. An attacker can exploit this vulnerability to perform domain spoofing on a carefully crafted HTML page...
Mozilla Firefox for Android < 41.0 Unknown Protocol Pasted URL Handling Spoofing
Binary data 9017.prm...
SSL "secure site" indicator spoofing — Mozilla
Various schemes were reported that could cause the "secure site" lock icon to appear and show certificate details for the wrong site. These could be used by phishers to make their spoofs look more legitimate, particularly in windows that hide the address bar showing the true location...
Mozilla Browser 0.8/0.9/1.x - Refresh Security Property Spoofing
source: https://www.securityfocus.com/bid/10796/info Mozilla and Firefox may permit malicious Web pages to spoof security properties of a trusted site. An attacker can exploit this issue to spoof the URI and SSL certificate of a site trusted by an unsuspecting user. The attacker can then use this...