Lucene search
+L

7 matches found

snyk
snyk
added 2026/06/22 8:10 p.m.2 views

Server-side Request Forgery (SSRF)

Overview Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the /sessionservice endpoint when authenticated users register URLs for session event notifications without sufficient restriction. An attacker can cause the server to make outbound requests to...

8.6CVSS5.9AI score
Exploits0References2
nvd
nvd
added 2014/10/08 10:55 a.m.22 views

CVE-2014-3193

The SessionService::GetLastSession function in browser/sessions/sessionservice.cc in Google Chrome before 38.0.2125.101 allows remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via vectors that leverage "type confusion" for callback processing...

7.5CVSS7.1AI score0.01694EPSS
Exploits0References5
prion
prion
added 2014/10/08 10:55 a.m.18 views

Type confusion

The SessionService::GetLastSession function in browser/sessions/sessionservice.cc in Google Chrome before 38.0.2125.101 allows remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via vectors that leverage "type confusion" for callback processing...

7.5CVSS7.6AI score0.01694EPSS
Exploits0References5Affected Software5
ubuntucve
ubuntucve
added 2014/10/08 10:55 a.m.28 views

CVE-2014-3193

The SessionService::GetLastSession function in browser/sessions/sessionservice.cc in Google Chrome before 38.0.2125.101 allows remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via vectors that leverage "type confusion" for callback processing...

7.5CVSS7.3AI score0.01694EPSS
Exploits0References4
cve
cve
added 2014/10/08 10:0 a.m.85 views

CVE-2014-3193

CVE-2014-3193 : Affected software is Google Chrome prior to 38.0.2125.101. Root cause is a type confusion issue in SessionService::GetLastSession used during callback processing, which can lead to a use-after-free and potentially other impact. The vulnerability enables denial of service and parti...

7.5CVSS7AI score0.01694EPSS
Exploits0References5Affected Software4
cvelist
cvelist
added 2014/10/08 10:0 a.m.29 views

CVE-2014-3193

The SessionService::GetLastSession function in browser/sessions/sessionservice.cc in Google Chrome before 38.0.2125.101 allows remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via vectors that leverage "type confusion" for callback processing...

6.9AI score0.01694EPSS
Exploits0References5
debiancve
debiancve
added 2014/10/08 10:0 a.m.38 views

CVE-2014-3193

Removed by vendor...

7.5CVSS9.4AI score0.01694EPSS
Exploits0
Rows per page
Query Builder