Lucene search
K

213 matches found

UbuntuCve
UbuntuCve
added 2022/08/16 9:15 p.m.20 views

CVE-2022-35451

OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b03b5...

6.5CVSS6.6AI score0.01181EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2022/08/12 8:15 p.m.25 views

CVE-2022-2604

Use after free in Safe Browsing in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.3AI score0.00615EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2022/07/27 10:15 p.m.32 views

CVE-2022-1873

Insufficient policy enforcement in COOP in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS6.8AI score0.00763EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2022/07/26 10:15 p.m.32 views

CVE-2022-1486

Type confusion in V8 in Google Chrome prior to 101.0.4951.41 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page...

8.8CVSS7.2AI score0.00786EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2022/07/06 7:15 p.m.34 views

CVE-2022-33047

OTFCC v0.10.4 was discovered to contain a heap buffer overflow after free via otfccbuild.c...

9.8CVSS7AI score0.01181EPSS
Exploits0References1
OSV
OSV
added 2022/05/26 2:15 p.m.53 views

CVE-2022-1664

Dpkg::Source::Archive in dpkg, the Debian package management system, before version 1.21.8, 1.20.10, 1.19.8, 1.18.26 is prone to a directory traversal vulnerability. When extracting untrusted source packages in v2 and v3 source package formats that include a debian.tar, the in-place extraction ca...

9.8CVSS4.5AI score
Exploits0References7
OSV
OSV
added 2022/05/26 2:15 p.m.7 views

AZL-9853 CVE-2022-1664 affecting package dpkg for versions less than 1.20.10-1

Dpkg::Source::Archive in dpkg, the Debian package management system, before version 1.21.8, 1.20.10, 1.19.8, 1.18.26 is prone to a directory traversal vulnerability. When extracting untrusted source packages in v2 and v3 source package formats that include a debian.tar, the in-place extraction ca...

9.8CVSS7.4AI score0.02871EPSS
Exploits0References1
Ubuntu
Ubuntu
added 2022/05/26 11:16 a.m.86 views

USN-5446-1: dpkg vulnerability

Max Justicz discovered that dpkg incorrectly handled unpacking certain source packages. If a user or an automated system were tricked into unpacking a specially crafted source package, a remote attacker could modify files outside the target unpack directory, leading to a denial of service or...

9.8CVSS8.3AI score0.02871EPSS
Exploits0
OSV
OSV
added 2022/05/26 11:16 a.m.5 views

USN-5446-1 dpkg vulnerability

Max Justicz discovered that dpkg incorrectly handled unpacking certain source packages. If a user or an automated system were tricked into unpacking a specially crafted source package, a remote attacker could modify files outside the target unpack directory, leading to a denial of service or...

9.8CVSS7.3AI score0.02871EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2022/05/26 8:20 a.m.43 views

CVE-2022-1664

Dpkg::Source::Archive in dpkg, the Debian package management system, before version 1.21.8, 1.20.10, 1.19.8, 1.18.26 is prone to a directory traversal vulnerability. When extracting untrusted source packages in v2 and v3 source package formats that include a debian.tar, the in-place extraction ca...

9.8CVSS9.4AI score0.02871EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2022/04/05 1:15 a.m.18 views

CVE-2022-0800

Heap buffer overflow in Cast UI in Google Chrome prior to 99.0.4844.51 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.4AI score0.00997EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2022/04/05 1:15 a.m.20 views

CVE-2022-0797

Out of bounds memory access in Mojo in Google Chrome prior to 99.0.4844.51 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page...

8.8CVSS7.2AI score0.01677EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2022/04/05 1:15 a.m.26 views

CVE-2022-0807

Inappropriate implementation in Autofill in Google Chrome prior to 99.0.4844.51 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page...

6.5CVSS7AI score0.00868EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2022/02/12 2:15 a.m.28 views

CVE-2022-0289

Use after free in Safe browsing in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.3AI score0.28196EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2022/02/12 12:15 a.m.35 views

CVE-2022-0096

Use after free in Storage in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.4AI score0.01361EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2021/12/23 1:15 a.m.18 views

CVE-2021-4058

Heap buffer overflow in ANGLE in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.4AI score0.01376EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2021/11/02 10:15 p.m.33 views

CVE-2021-37982

Use after free in Incognito in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.2AI score0.00875EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2021/11/02 9:15 p.m.76 views

CVE-2021-37979

heap buffer overflow in WebRTC in Google Chrome prior to 94.0.4606.81 allowed a remote attacker who convinced a user to browse to a malicious website to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.4AI score0.01711EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/10/11 12:0 a.m.4 views

Config Handler 安全漏洞

Config Handler is an open source package. It is used for loading configurations, deep merging packages, global, and environments. Config Handler has a security vulnerability that stems from the fact that all versions of the package configuration handler are susceptible to prototype contamination...

9.8CVSS8.2AI score0.01154EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2021/10/08 10:15 p.m.26 views

CVE-2021-37968

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

4.3CVSS6.8AI score0.01188EPSS
Exploits0References1
Rows per page
Query Builder