Lucene search
K

213 matches found

UbuntuCve
UbuntuCve
added 2021/10/08 10:15 p.m.28 views

CVE-2021-37968

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

4.3CVSS6.8AI score0.01188EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2021/09/03 8:15 p.m.30 views

CVE-2021-30618

Chromium: CVE-2021-30618 Inappropriate implementation in DevTools...

8.8CVSS7.1AI score0.04125EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2021/09/03 8:15 p.m.35 views

CVE-2021-30609

Chromium: CVE-2021-30609 Use after free in Sign-In...

8.8CVSS7.1AI score0.04159EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2021/09/03 8:15 p.m.37 views

CVE-2021-30620

Chromium: CVE-2021-30620 Insufficient policy enforcement in Blink...

8.8CVSS7.1AI score0.04125EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/08/25 12:0 a.m.5 views

opensysusers 代码注入漏洞

opensysusers is an open source package. It is an alternative implementation of systemd-sysusers that can be run on systems with or without systemd installed. A code injection vulnerability exists in versions of opensysusers prior to 0.6, which poses a security risk primarily due to the use of...

9.8CVSS8.4AI score0.02705EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2021/08/03 8:15 p.m.30 views

CVE-2021-30578

Uninitialized use in Media in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page...

8.8CVSS7.2AI score0.01738EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2021/08/03 8:15 p.m.20 views

CVE-2021-30587

Inappropriate implementation in Compositing in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to potentially spoof the contents of the Omnibox URL bar via a crafted HTML page...

4.3CVSS6.3AI score0.01695EPSS
Exploits1References1
Amazon
Amazon
added 2021/07/21 12:0 a.m.6 views

Important: kernel-livepatch-4.14.238-182.421

Issue Overview: No CVE associated with this advisory Affected Packages: kernel-livepatch-4.14.238-182.421 Issue Correction: Please ensure you have live patching enabled. Run yum update kernel-livepatch-4.14.238-182.421 or yum update --advisory ALAS2LIVEPATCH-2021-055 to update your system. New...

7.8CVSS7AI score0.09729EPSS
Exploits6
UbuntuCve
UbuntuCve
added 2021/04/26 5:15 p.m.21 views

CVE-2021-21211

Inappropriate implementation in Navigation in Google Chrome on iOS prior to 90.0.4430.72 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS7AI score0.01018EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/04/02 12:0 a.m.38 views

Debian DSA-4883-1 : underscore - security update

It was discovered that missing input sanitising in the template function of the Underscore JavaScript library could result in the execution of arbitrary code. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory...

7.2CVSS6.6AI score0.04087EPSS
Exploits2References5
CNVD
CNVD
added 2021/03/19 12:0 a.m.7 views

shescape command injection vulnerability

shescape is open source a simple shell escaping program package for JavaScript . Use it to escape user-controlled input to shell commands to prevent shell injection . A command injection vulnerability exists in versions of shescape prior to 1.1.3, which can be exploited by an attacker to insert a...

7.8CVSS7.6AI score0.00573EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2021/02/17 12:0 a.m.27 views

Debian DSA-4852-1 : openvswitch - security update

Joakim Hindersson discovered that Open vSwitch, a software-based Ethernet virtual switch, allowed a malicious user to cause a denial-of-service by sending a specially crafted packet. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian...

7.8CVSS7.4AI score0.08026EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2021/01/08 7:15 p.m.29 views

CVE-2020-16026

Use after free in WebRTC in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.2AI score0.0099EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2021/01/08 7:15 p.m.29 views

CVE-2020-16017

Use after free in site isolation in Google Chrome prior to 86.0.4240.198 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page...

9.6CVSS7.3AI score0.02747EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2021/01/08 7:15 p.m.23 views

CVE-2020-16025

Heap buffer overflow in clipboard in Google Chrome prior to 87.0.4280.66 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page...

9.6CVSS7.4AI score0.02255EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2020/09/21 8:15 p.m.20 views

CVE-2020-6550

Use after free in IndexedDB in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

9.3CVSS7.3AI score0.29292EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2020/07/22 5:15 p.m.21 views

CVE-2020-6521

Side-channel information leakage in autofill in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page...

6.5CVSS6.9AI score0.01703EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2020/07/22 5:15 p.m.20 views

CVE-2020-6533

Type Confusion in V8 in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.2AI score0.01952EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2020/07/22 5:15 p.m.21 views

CVE-2020-6513

Heap buffer overflow in PDFium in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file...

8.8CVSS7.4AI score0.02965EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2020/06/03 11:15 p.m.25 views

CVE-2020-6500

Inappropriate implementation in interstitials in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

6.5CVSS6.9AI score0.00676EPSS
Exploits0References3
Rows per page
Query Builder